Vulnerability Development mailing list archives
Re: hybrid-ircd
From: "Matthew S. Hallacy" <mhallacy () MERCURY XTRATYME COM>
Date: Fri, 24 Nov 2000 17:11:50 -0600
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This is untrue, I tested it personally on EFNet, poptix is poptix@a%s%d%n%s%s%s.poptix.net * poptix poptix on @#us-opers poptix using irc.Prison.NET The server that stole the missing chads... poptix End of /WHOIS list. I also tested with %n%n%n%n, same effect (none). I tried all the things you said, including nick collision, plus some, with multiple versions of hybrid. -poptix PS: Next time you want to bash hybrid, don't hide behind an anonymous remailer. On Thu, 23 Nov 2000 ircd () EFNET NET wrote:
format string problems in hybrid-ircd. some fixed need valid domain, and in-addr.arpa. bind8, configure check-names warn; make host %n%n%n%n.host.com in a 1.2.3.4 4.3.2.1.in-addr.arpa in ptr %n%n%n%n.host.com connect to comstud (CS) server because allows % connect 2nd client to hybrid server, join channel. join comstud client to channel, hybrid server crashes. use comstud client to place ban on channel, hybrid server crashes. cause nick collision with hybrid and comstud client, hybrid crashes. send a notice from comstud client to hybrid client, hybrid crashes -ntn _________________________________________________________ This message was sent with Sendpad.com. The sender indicated his or her e-mail address as "ircd () efnet net" Send anonymous e-mail right now at http://www.sendpad.com
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE6HvW+yECZjIgidSERAkPoAJ4wvF8Q4hmdzvyZQvlmsrqGL3quRgCgz+Jo 7OyS/sIq3sA7MDxFlZ+icKs= =7l3o -----END PGP SIGNATURE-----
Current thread:
- hybrid-ircd ircd (Nov 25)
- Re: hybrid-ircd Matthew S. Hallacy (Nov 27)
- <Possible follow-ups>
- Re: hybrid-ircd ircd (Nov 29)