CVE-2006-6811

Name of the Vulnerable Software and Affected Versions: KsIRC versions 1.3.12 KsIRC versions prior to 3.5.5-r1

Description: The issue allows remote attackers to cause a denial of service (crash) via a long PRIVMSG string when connecting to an Internet Relay Chat (IRC) server. This results in an assertion failure and a NULL pointer dereference, which was originally reported as a buffer overflow. The exploitation of this issue can lead to a disruption of protected information and can be carried out remotely.

Recommendations: For version 1.3.12, consider disabling the PRIVMSG functionality until a patch is available. For versions prior to 3.5.5-r1, update to version 3.5.5-r1 or later to resolve the issue.