Bugtraq mailing list archives
Re: DCC HiJacking patch for BitchX 75p1
From: rain () INSANE LOONYBIN NET (Ben Winslow)
Date: Mon, 21 Dec 1998 16:33:30 -0500
On Sun, 18 Oct 1998, Alessio Orlandi wrote: # Hi all, # as recently discovered, with a simple port scan you can hijack some # of the BitchX dcc # connections. This due to the port assigning on the requesting client. # Here follows a really short patch that will fix the problem. The problem # is here: # BitchX when creates a DCC connection (listening socket) uses the # functions # connect_by_number (defined in network.c file). Passing as port 0 # This means that the OS will determine the port. Now.. for mental order.. # the ports will be quiet consecutive. Bad.. Bad... So.. let's add a # random value to the port returned by the system. All is now fixed. # Patch follows # ----------------------------------------------------------------------------------------- # # Regards # Alessio # "NaiL^d0d@ircnet/ircity" Orlandi # Thanks to: hackers@ircity Litos (you one of my best friend), Nervous, # awgn (hehe), # Lordfelix (salam), Raptor, # BlackJam, kasko, antirez # and hackers.it@ircnet Soren, NaiF, Bonjo # ---------------------------------------------------------------------------------------- # # # This patch won't work-- what if a port you decide on is already in use by something else? Ben
Current thread:
- [In]security in USR TotalSwitch Adam Maloney (Dec 15)
- DCC HiJacking patch for BitchX 75p1 Alessio Orlandi (Oct 18)
- Re: DCC HiJacking patch for BitchX 75p1 Andy Dills (Dec 21)
- Re: DCC HiJacking patch for BitchX 75p1 Ben Winslow (Dec 21)
- Re: DCC HiJacking patch for BitchX 75p1 mikey (Dec 22)
- Re: DCC HiJacking patch for BitchX 75p1 YounGoat (Dec 22)
- Re: [In]security in USR TotalSwitch Lou Anschuetz (Dec 21)
- <Possible follow-ups>
- Re: [In]security in USR TotalSwitch Adam Maloney (Dec 21)
- DCC HiJacking patch for BitchX 75p1 Alessio Orlandi (Oct 18)