Multiple integer overflows in the HelpServ module (mod-helpserv.c) in srvx 1.3.1 allow remote authenticated IRCops or HelpServ bot managers to cause a denial of service (infinite loop) via a large value in the EmptyInterval parameter or certain other interval configurations.
Vector
NETWORK
Complexity
MEDIUM
Authentication
SINGLE_INSTANCE
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| [oss-security] 20140828 Full disclosure: denial of servi... | |||
| 69454 | |||
| [oss-security] 20140829 Re: Full disclosure: denial of s... |