[BUG SUB] silc-server 1.0.2 denial of service vulnerability (continued) - silc-server
Frank Benkstein
frank at benkstein.net
Tue Mar 6 13:50:18 CET 2007
Software: silc-server
Version: 1.0.2
Operating System: Linux
Installation: source
Severity: critical
Description:
Sorry for the inconvenience but the previous patch only fixed the issue only for standalony servers and not for routers.
How to repeat:
/connect yourserver
/join nonexistent -hmac nonexistent
Remote Environment:
unspecified
Fix:
http://bugs.gentoo.org/show_bug.cgi?id=169599#c3
More information about the silc-devel
mailing list