parse_notice (TiCPU) in EnergyMech (emech) before 3.0.2 allows remote attackers to cause a denial of service (crash) via empty IRC CTCP NOTICE messages.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Energymech_irc_bot | Proton | 2.8 (including) | 2.8 (including) |
| Energymech_irc_bot | Proton | 2.8.1 (including) | 2.8.1 (including) |
| Energymech_irc_bot | Proton | 2.8.2 (including) | 2.8.2 (including) |
| Energymech_irc_bot | Proton | 2.8.3 (including) | 2.8.3 (including) |
| Energymech_irc_bot | Proton | 2.8.4 (including) | 2.8.4 (including) |
| Energymech_irc_bot | Proton | 2.8.5 (including) | 2.8.5 (including) |
| Energymech_irc_bot | Proton | 2.8.5.1 (including) | 2.8.5.1 (including) |
| Energymech_irc_bot | Proton | 2.9.4_dev (including) | 2.9.4_dev (including) |
| Energymech_irc_bot | Proton | 2.99.79 (including) | 2.99.79 (including) |
| Energymech_irc_bot | Proton | 3.0 (including) | 3.0 (including) |
| Energymech_irc_bot | Proton | 3.0.1 (including) | 3.0.1 (including) |
References
- http://secunia.com/advisories/20805
- http://secunia.com/advisories/20837
- http://www.energymech.net/versions-3.0.html
- http://www.gentoo.org/security/en/glsa/glsa-200606-26.xml
- http://www.securityfocus.com/bid/18664
- http://www.vupen.com/english/advisories/2006/2543
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27424
- http://secunia.com/advisories/20805
- http://secunia.com/advisories/20837
- http://www.energymech.net/versions-3.0.html
- http://www.gentoo.org/security/en/glsa/glsa-200606-26.xml
- http://www.securityfocus.com/bid/18664
- http://www.vupen.com/english/advisories/2006/2543
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27424