FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

eggdrop -- denial of service vulnerability

Affected packages
eggdrop < 1.6.19_2

Details

VuXML ID 399f4cd7-4d59-11de-8811-0030843d3802
Discovery 2009-05-15
Entry 2009-05-30

Secunia reports:

The vulnerability is caused due to an error in the processing of private messages within the server module (/mod/server.mod/servrmsg.c). This can be exploited to cause a crash by sending a specially crafted message to the bot.

References

Bugtraq ID 34985
CVE Name CVE-2009-1789
URL http://secunia.com/advisories/35104/
URL http://www.eggheads.org/news/2009/05/14/35