OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: BitchX /ignore bug
From: Rick Jansen (RickJansenTWEAKERS.NET)
Date: Tue Jul 04 2000 - 19:24:41 CDT


I don't know whether this is the right place to put it, but i'm going to
anyway :)

Because of a simple /invite nickname #%s%s%s%s%s%s%s%s%s, BitchX will
segfault and coredump. This is a small programming error, you can find a
patch at this location:
http://root66.org/karin/BitchX-bug-patch-3-juli-2000.tar.gz by Frank van
Vliet, alias {}.

AFAIK, v1.0c16 is vulnerable, other versions may be vulnerable as well.

For the dutch people among us, see
http://www.tweakers.net/nieuws.dsp?ID=11931 for more info.

Rick Jansen, Netherlands.
**********************
       Server Administrator
    http://www.tweakers.net
     http://www.fokzine.net
      http://www.linuxers.nl
**********************