NI3
11-08-2003, 10:57 AM
TITLE:
UniChat Character Handling Denial of Service Vulnerability
SECUNIA ADVISORY ID:
SA10163
VERIFY ADVISORY:
[Only registered and activated users can see links]
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
From remote
SOFTWARE:
UniChat 2.x
DESCRIPTION:
A vulnerability has been reported in Unichat, which can be exploited
by malicious users to crash other user's clients.
The vulnerability is caused due to an error when handling characters.
This can be exploited by adding additional characters to the file
"u2res000.rit", which will crash other user's clients when a chatroom
is visited.
It is also possible for malicious users to manipulate room names
because the "Only ops set topic" option isn't set. This can eg. be
exploited by logging on a UniChat server with a mIRC client.
Reportedly, other unspecified issues are also present.
SOLUTION:
Use another product.
REPORTED BY / CREDITS:
DarkKnight
----------------------------------------------------------------------
UniChat Character Handling Denial of Service Vulnerability
SECUNIA ADVISORY ID:
SA10163
VERIFY ADVISORY:
[Only registered and activated users can see links]
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
From remote
SOFTWARE:
UniChat 2.x
DESCRIPTION:
A vulnerability has been reported in Unichat, which can be exploited
by malicious users to crash other user's clients.
The vulnerability is caused due to an error when handling characters.
This can be exploited by adding additional characters to the file
"u2res000.rit", which will crash other user's clients when a chatroom
is visited.
It is also possible for malicious users to manipulate room names
because the "Only ops set topic" option isn't set. This can eg. be
exploited by logging on a UniChat server with a mIRC client.
Reportedly, other unspecified issues are also present.
SOLUTION:
Use another product.
REPORTED BY / CREDITS:
DarkKnight
----------------------------------------------------------------------