Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

BitchX IRC Client Malformed RPL_NAMEREPLY Message DoS

Medium

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running a version of the BitchX IRC client (version 75p3, 1.0c16, 1.0c19, or 1.0c20cvs) that may be vulnerable to a Denial of Service attack. If a remote attacker sends a malformed RPL_NAMEREPLY numeric 353 message to a BitchX IRC client, the attacker can cause the client to crash.

Solution

Upgrade or patch according to vendor recommendations.