CVE-2013-7049

Name of the Vulnerable Software and Affected Versions ZNC for Windows (znc-msvc) versions 0.206 and earlier

Description The issue is a stack-based buffer overflow in the Fish plugin for ZNC, which can be exploited by remote attackers to cause a denial of service (crash) by sending a long string in a DH1080 INIT message.

Recommendations For ZNC for Windows (znc-msvc) versions 0.206 and earlier, update to a version later than 0.206 to resolve the issue. As a temporary workaround, consider restricting access to the Fish plugin to minimize the risk of exploitation.