Client.cpp in ZNC 0.092 allows remote malicious users to cause a denial of service (exception and daemon crash) via a PING command that lacks an argument.
Debian Bug report logs -
#599708
CVE-2010-2812 and CVE-2010-2934
Package:
znc;
Maintainer for znc is Patrick Matthäi <pmatthaei@debianorg>; Source for znc is src:znc (PTS, buildd, popcon)
Reported by: Moritz Muehlenhoff <jmm@debianorg>
Date: Sun, 10 Oct 2010 11:21:05 UTC
Severity: grave
Tags: security
Fixed in v ...