IRCu Serious Crash bug

Bug Exploit IRCd IRCu Linux

Erosion writes: In this post on Milw0rm the bug and exploit is explained. IRCu (g who found the bug and described it on Milw0rm, how he found the IRCu Crash bug. "Core dump from one of our servers," Slug starts. "send_user_mode in s_user.c does not check that the argument after a +r mode is present, if it is not than the NULL sentinel may be missed, causing the function to iterate over the boundary of the array."

One way to exploit the bug would be using the command with string /mode nickname i i i i i i i i i i i i i i i r r r r s. Doing so would core the server.