---------------------------------------------------------------------- Secunia integrated with Microsoft WSUS http://secunia.com/blog/71/ ---------------------------------------------------------------------- TITLE: ircd-ratbox Integer Underflow and NULL Pointer Dereference Vulnerabilities SECUNIA ADVISORY ID: SA38210 VERIFY ADVISORY: http://secunia.com/advisories/38210/ DESCRIPTION: Two vulnerabilities have been reported in ircd-ratbox, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. 1) An integer underflow when processing the "LINKS" command can be exploited to cause a crash or potentially execute arbitrary code. Successful exploitation may require that "flatten_links" is disabled. 2) An NULL pointer dereference error when processing the "HELP" command can be exploited to cause a crash. SOLUTION: Update to version 2.2.9. http://www.ircd-ratbox.org/download/ircd-ratbox-2.2.9.tar.bz2 PROVIDED AND/OR DISCOVERED BY: 1) David Leadbeater 2) Reported in a Debian advisory. ORIGINAL ADVISORY: ircd-ratbox: http://lists.ratbox.org/pipermail/ircd-ratbox/2010-January/000891.html DSA-1980-1: http://lists.debian.org/debian-security-announce/2010/msg00016.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------