PTnet IRCD Lets Remote Users Consume All Available Memory - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Instant Messaging/IRC/Chat) > IRCD (PTnet)

PTnet IRCD Lets Remote Users Consume All Available Memory

SecurityTracker Alert ID: 1015425

SecurityTracker URL: http://securitytracker.com/id/1015425

CVE Reference: GENERIC-MAP-NOMATCH (Links to External Site)

Date: Dec 30 2005

Impact: Denial of service via network

Exploit Included: Yes

Version(s): 1.5, 1.6

Description: A vulnerability was reported in PTnet IRCD. A remote user can cause denial of service conditions.

A remote user can attempt to join a locked channel (such as all #*.log channels) that they are not authorized to access. This will cause the system to display an access control error message but also to allocate memory and leave the channel open. A remote user can open multiple channels to cause the target service to consume all available memory and restart.

The flaw resides in 'channel.c' in the m_join() function.

blackfile reported this vulnerability.

Impact: A remote user can cause the target service to restart.

Solution: No solution was available at the time of this entry.

Cause: Resource error, State error

Underlying OS: Linux (Any), UNIX (Any)

Message History: None.

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC