N/A

ircu 2.10.12.01 allows remote attackers to (1) cause a denial of service (flood wallops) by joining two channels with certain long names that differ in the final character, which triggers a protocol violation and (2) cause a denial of service (daemon crash) via a "J 0:#channel" message on a channel without an apass; and (3) allows remote authenticated operators to cause a denial of service (daemon crash) via a remote "names -D" command.

N/A

N/A

Universal Ircd Server 多个远程漏洞

ircu 2.10.12.01允许远程攻击者(1)通过加入具有某些超长名字并在末尾字母不同的两个渠道，造成拒绝服务(flood wallops)，这会出发一个协议违反并(2)造成拒绝服务(后台程序崩溃)可以借助一个没有apass渠道上的"J 0:#channel"信息; 且(3)允许远程验证操作者可以借助一个远程"names -D"指令，造成拒绝服务(后台程序崩溃)。

N/A

N/A