Eggdrop Server Module Remote Buffer Overflow Vuln...

2007-10-13T11:26:20-04:00

There is already a thread discussing this issue here:

http://forum.egghelp.org/viewtopic.php?t=14004

Statistics: Posted by LordSephiroth — Sat Oct 13, 2007 11:26 am

Eggdrop Server Module Remote Buffer Overflow Vuln...

2007-10-13T05:37:55-04:00

seems an immediate update for the exlpoit has been made..I haven't tested the exploit, but there's written that they did test it already on eggdrop 1.6.18 / linux 2.4.
here are more informations and affected versions/operation systems.

Eggdrop Server Module Message Handling Remote Buffer Overflow Vulnerability

Bugtraq ID: 24070
Class: Boundary Condition Error
CVE: CVE-2007-2807

Remote: Yes
Local: No
Published: May 21 2007 12:00AM
Updated: Oct 11 2007 08:38PM
Credit: Bow Sineath is credited with the discovery of this vulnerability
Vulnerable: MandrakeSoft Linux Mandrake 2007.1 x86_64
MandrakeSoft Linux Mandrake 2007.1
MandrakeSoft Linux Mandrake 2007.0 x86_64
MandrakeSoft Linux Mandrake 2007.0
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
Gentoo Linux
Eggheads Eggdrop IRC bot 1.6.18
Eggheads Eggdrop IRC bot 1.6.17
Eggheads Eggdrop IRC bot 1.6.15
Eggheads Eggdrop IRC bot 1.6.14
Eggheads Eggdrop IRC bot 1.6.13
Eggheads Eggdrop IRC bot 1.6.12
Eggheads Eggdrop IRC bot 1.6.11
Eggheads Eggdrop IRC bot 1.6.10

Statistics: Posted by whoelse — Sat Oct 13, 2007 5:37 am

egghelp/eggheads community

Eggdrop Server Module Remote Buffer Overflow Vuln...

Eggdrop Server Module Remote Buffer Overflow Vuln...