EFnet Paralyzed By Vulnerability

EFnet Paralyzed By Vulnerability 156

Posted by Unknown Lamer on Monday December 31, 2012 @07:15PM from the blame-c dept.

An anonymous reader writes "EFnet member Fionn 'Fudge' Kelleher reported several vulnerabilities in the IRC daemons charybdis, ircd-ratbox, and other derivative IRCds. The vulnerability was subsequently used to bring down large portions of the EFnet IRC network." By crafting a particular message, you can cause the IRC daemon to call strlen(NULL) and game over, core dumped.

EFnet Paralyzed By Vulnerability

This discussion has been archived. No new comments can be posted.

Search 156 Comments Log In/Create an Account

Comments Filter:

C strings strike again! (Score:3, Insightful)

by cheesybagel ( 670288 ) writes: on Monday December 31, 2012 @07:21PM (#42437153)

This is the problem you get when your strings don't know their allocated size like in that ghastly language Pascal.

Re:C strings strike again! (Score:2, Insightful)

by cheesybagel ( 670288 ) writes: on Monday December 31, 2012 @07:22PM (#42437161)

Not to mention the whole C issue where pointers to something and arrays of something are sort of the same but not really.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

EFnet Paralyzed By Vulnerability 156

EFnet Paralyzed By Vulnerability More Login

EFnet Paralyzed By Vulnerability

C strings strike again! (Score:3, Insightful)

Re:C strings strike again! (Score:2, Insightful)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot