There is a buffer overflow in Subseven 2.1a causing it to quit quietly, crash, or overwrite variables.
2f07ff322bd1707e1b2be738ea6088e6ee158ab41f6b739e2469343c59791e72
<!DOCTYPE HTML PUBLIC "html.dtd">
<HTML>
<BODY BGCOLOR="#000000" TEXT="#FFFFFF"><PRE>
<FONT COLOR="#CC0000">COMMAND</FONT>
SubSeven
<FONT COLOR="#CC0000">SYSTEMS AFFECTED</FONT>
SubSeven 2.1a
<FONT COLOR="#CC0000">PROBLEM</FONT>
Andrew Griffiths found following. There is a buffer overflow in
Subseven 2.1a. It happens when you tell the server to execute a
dos command > 315 chars long. Depending on how long it is, you
can get it to quit quietly (not sure how long) plain crash (eip
not written over) or trash every variable there. (Around 4000?)
An interesting side effect seems to be that stops connections to
139. The default install port is 27374, (assuming no password)
type DOS xxxxx(lot's x's)xxxxx and the connection should drop.
<FONT COLOR="#CC0000">SOLUTION</FONT>
Nothing yet.
</PRE></BODY>
</HTML>