Hosting Provided By

Re: [irc-security] Multiple vulnerabilities in ircu

From: Tom Laermans <tom.laermans(at)powersource.cx>
Date: Fri Sep 21 2007 - 03:51:23 EDT

Colin Alston wrote:
> Please be careful labeling something as "vulnerabilities" when they
> aren't. You've described software bugs which should be reported to the
> maintainer, none of them so far as I can see are vulnerabilities or
> exploits.
>

I can see crashbugs, operfloods, channel takeovers and ways to find out people's IP addresses who think they are hidden thanks to the IP hiding feature.
Having this malfunction certainly looks like a vulnerability to me.

Most vulnerabilities are indeed software bugs, and the exploits are actually documented in the post you comment on.

Tom Received on Fri Sep 21 12:34:10 2007

This message: [ Message body ]
Next message: Crispin Cowan: "Re: 0day: PDF pwns Windows"
Previous message: Chad Perrin: "Re: [Full-disclosure] 0day: PDF pwns Windows"
In reply to: Colin Alston: "Re: [irc-security] Multiple vulnerabilities in ircu"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:16:44 EDT