CVE-2001-0050

BitchX - Remote Code Execution via Long DNS Hostname

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0050. PoCs published by nimrood.

AI-analyzed exploit summary This exploit demonstrates a DNS buffer overflow in BitchX IRC client (CVE-2001-0050) by crafting malformed DNS packets. It leverages a memcpy overflow in the T_A record processing to achieve remote code execution with the privileges of the BitchX client.

Description

Buffer overflow in BitchX IRC client allows remote attackers to cause a denial of service and possibly execute arbitrary commands via an IP address that resolves to a long DNS hostname or domain name.

Exploits (1)

exploitdb WORKING POC VERIFIED

by nimrood · cremoteunix

https://www.exploit-db.com/exploits/20490

View Code ZIP pw:eip

This exploit demonstrates a DNS buffer overflow in BitchX IRC client (CVE-2001-0050) by crafting malformed DNS packets. It leverages a memcpy overflow in the T_A record processing to achieve remote code execution with the privileges of the BitchX client.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: BitchX (all versions up to 1.0c17)

No auth needed

Prerequisites: Control over a malicious DNS server · Victim must perform a DNS lookup (e.g., connecting to an IRC server)

MITRE ATT&CK