Multiple IRCd DNS Denial of Service Vulnerability

DreamForge IRCd is an IRC daemon designed for the Dalnet IRC Network, and maintained by the Dalnet IRCd Team. A problem with the daemon allows users to remotely crash the daemon.

The problem occurs in the dns resolution code included as part of the daemon. A buffer overflow exists in the routine that reverse-resolves an IP address. Upon the return of a 128 byte A Record to the IRCd after attempting to resolve an IP address, the daemon dies. This allows a malicious user with control of their own DNS to crash the IRC daemon, resulting in a Denial of Service to legitimate users. This vulnerability potentially impacts other IRC daemons that are derivatives of the original Dreamforge source.


Privacy Statement
Copyright 2010, SecurityFocus