The dc_chat function in cmd.dc.c in DConnect Daemon 0.7.0 and previous versions allows remote malicious users to cause a denial of service (application crash) by sending a client message before providing the nickname, which triggers a null pointer dereference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dconnect dconnect daemon 0.0.2 |
||
dconnect dconnect daemon 0.0.3 |
||
dconnect dconnect daemon 0.7.0 |