Silc Server 1.0.2 - New Channel Remote Denial of Service

Author: Frank Benkstein
type: dos
platform: linux
port: 
date_added: 2007-03-06  
date_updated: 2013-11-20  
verified: 1  
codes: CVE-2007-1327;OSVDB-33887  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 29716.txt  

source: https://www.securityfocus.com/bid/22846/info

SILC Server is prone to a denial-of-service vulnerability because the application fails to handle exceptional conditions.

An attacker can exploit this issue to crash the affected server, effectively denying service to legitimate users.

This issue affects version 1.0.2; other versions may also be affected.

The following proof of concept demonstrates this issue:

connect yourserver
join nonexistent -hmac nonexistent