Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 30 Jul 2010 07:19:18 GMT
From:      Axel Gonzalez <loox@e-shell.net>
To:        freebsd-gnats-submit@FreeBSD.org
Subject:   misc/149094: ports irc/kvirc-* vulnerability
Message-ID:  <201007300719.o6U7JIv3095541@www.freebsd.org>
Resent-Message-ID: <201007300720.o6U7K8eB012541@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help

>Number:         149094
>Category:       misc
>Synopsis:       ports irc/kvirc-* vulnerability
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Fri Jul 30 07:20:08 UTC 2010
>Closed-Date:
>Last-Modified:
>Originator:     Axel Gonzalez
>Release:        8.1-RELEASE
>Organization:
>Environment:
FreeBSD moonlight 8.1-RELEASE FreeBSD 8.1-RELEASE #0: Tue Jul 27 23:15:07 CDT 2010     toor@moonlight:/tmp/obj/usr/src/sys/LXCORE2e  i386
>Description:
remote command execution.

https://svn.kvirc.de/kvirc/ticket/858
>How-To-Repeat:
Install kvirc, connect to server, be exploited
>Fix:
Apply the patch from:

https://svn.kvirc.de/kvirc/changeset/4693


>Release-Note:
>Audit-Trail:
>Unformatted:



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201007300719.o6U7JIv3095541>