The OpenNET Project
 
Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY
LINKS NEWS MAN DOCUMENTATION


ConferenceRoom Exploit [tRa BuG LaBz0rz]


<< Previous INDEX Search src Set bookmark Go to bookmark Next >>
X-RDate: Tue, 31 Mar 1998 15:02:33 +0600 (ESD)
Date: Sun, 29 Mar 1998 02:34:55 -0600
From: Rick Branson <[email protected]>
To: [email protected]
Subject: ConferenceRoom Exploit [tRa BuG LaBz0rz]

the ereet bug trackz0r hq has found a bug in the ConferenceRoom
IRC server software.

REwT Reports:

 CR has a serious bug which enables people to really annoy IRCops
 and users of the network. Not only that, but the IRCops don't have
 a clue of where it's coming from. the ereet bug trackz0r hq has
 known about this bug for quite a while, but has not released the
 nfo, thinking WebMaster would clean up. Well, they haven't. The
 ereet bug trackz0r hq has released a comemoritive WarForge Edition
 of the bug exploiter (FoQeR). Download it here:
http://baste.magibox.net/~rewt/foq-wf.zip

 More nfo:
  The bug is a buffer overflow in the ConferenceRoom SNOTICE. It's
  a variation of the earlier "False Server SNOTICE." But this time,
  the IRCops have no idea where it's coming from. All you have to
  do is send alot of stuff along with your message (Message should
  be first, then all of the Alt+160s or whatever) when you do a
  "False Server SNOTICE" attack.

 Fix:
  I guess the WebMaster boiz will have to figer that out.

for the tRa ereet bug trackz0r hq..
I'm Dr. REwT

<< Previous INDEX Search src Set bookmark Go to bookmark Next >>



Партнёры:
PostgresPro
Inferno Solutions
Hosting by Hoster.ru
Хостинг:

Закладки на сайте
Проследить за страницей
Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру