Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

BitchX IRC Client DNS Response Remote Overflow

Medium

Synopsis

The remote host is running a version of the BitchX IRC client that may be vulnerable to a buffer overflow.

Description

A buffer overflow within the DNS resolver code makes it possible to overwrite stack variables by generating a malformed DNS packet. A malicious attacker may use this vulnerability to execute arbitrary code in the context of the BitchX client. Note that it is necessary for an attacker to control a DNS server to exploit this bug.

Solution

Upgrade or patch according to vendor recommendations.