ngIRCd Remote Format String Vulnerability

Bugtraq ID:	12434
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Feb 03 2005 12:00AM
Updated:	Feb 03 2005 12:00AM
Credit:	Discovery is credited to CoKi <[email protected]>.
Vulnerable:	ngIRCd ngIRCd 0.8.2 ngIRCd ngIRCd 0.8.1 ngIRCd ngIRCd 0.8 ngIRCd ngIRCd 0.7.7 ngIRCd ngIRCd 0.7.6 ngIRCd ngIRCd 0.7.5 ngIRCd ngIRCd 0.7.1 ngIRCd ngIRCd 0.7 ngIRCd ngIRCd 0.6.1 ngIRCd ngIRCd 0.6
Not Vulnerable:

ngIRCd Remote Format String Vulnerability

ngIRCd is reported prone to a remote format string vulnerability. This issue presents itself because the application fails to properly sanitize user-supplied input prior to passing it as the format specifier to a formatted printing function.

A remote attacker may leverage this issue to write to arbitrary process memory, facilitating code execution. Any code execution would take place with superuser privileges.

ngIRCd 0.8.2 and prior versions are reported vulnerable to this issue.

ngIRCd Remote Format String Vulnerability

Exploit code is available:

• /data/vulnerabilities/exploits/ngircd_fsexp.c

ngIRCd Remote Format String Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

ngIRCd Remote Format String Vulnerability

References:

• ngIRCd Home Page (ngIRCd)
  
• ngIRCd <= v0.8.2 Format String Vulnerability (CoKi )