irc_server.c in dircproxy 1.2.0 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) via an ACTION command without a parameter, which triggers a NULL pointer dereference, as demonstrated using a blank /me message from irssi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dircproxy dircproxy |