CVE-2009-1789

Eggdrop and Windrop < 1.6.19 - Denial of Service via PRIVMSG String Length Miscount

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1789. PoCs published by Thomas Sader.

AI-analyzed exploit summary This is a writeup detailing a remote crash vulnerability in eggdrop/windrop versions 1.6.19 due to an improper fix for CVE-2007-2807. The vulnerability allows a remote attacker to crash the IRC bot by sending a malformed PRIVMSG.

Description

mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Thomas Sader · textdosmultiple

https://www.exploit-db.com/exploits/8695

View Code ZIP pw:eip

This is a writeup detailing a remote crash vulnerability in eggdrop/windrop versions 1.6.19 due to an improper fix for CVE-2007-2807. The vulnerability allows a remote attacker to crash the IRC bot by sending a malformed PRIVMSG.

Classification

Writeup 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: eggdrop/windrop 1.6.19 (without ctcpfix patch)

No auth needed

Prerequisites: Access to the same IRC network as the target eggdrop/windrop bot

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (16)

Core 16

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/50547

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/35104

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/54460

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/503574

Patch, Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/1340

Vendor Advisory vendor-advisory x_refsource_fedora

https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01337.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/8695

Patch, Vendor Advisory x_refsource_confirm

http://cvs.eggheads.org/viewvc/viewvc.cgi/eggdrop1.6/doc/Changes1.6?revision=1.20&view=markup

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/35690

Third Party Advisory mailing-list x_refsource_fulldisc

http://archives.neohapsis.com/archives/fulldisclosure/2009-05/0129.html

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2009:126

Issue Tracking x_refsource_confirm

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528778

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/34985

Vendor Advisory vendor-advisory x_refsource_fedora

https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01333.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/35158

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2009/dsa-1826

Scores

EPSS 0.1422

EPSS Percentile 94.5%

Details

Status published

Products (42)

eggheads/eggdrop 1.6.0

eggheads/eggdrop 1.6.1

eggheads/eggdrop 1.6.2

eggheads/eggdrop 1.6.3

eggheads/eggdrop 1.6.4

eggheads/eggdrop 1.6.5

eggheads/eggdrop 1.6.6

eggheads/eggdrop 1.6.7

eggheads/eggdrop 1.6.8

eggheads/eggdrop 1.6.9

... and 32 more

Published May 26, 2009

Tracked Since Feb 18, 2026