Slashdot Mirror

← Back to Stories (view on slashdot.org)

BitchX 1.0c19 IRC Client Backdoored

Posted by michael on Tuesday July 2, 2002 @01:41AM from the what-me-worry dept.

JRAC writes "A recent Bugtraq submission has indicated that the popular IRC client, BitchX, contains a backdoor. So far, only certain 1.0c19 files, downloaded from ftp.bitchx.com are reported to contain the malicious code. The BitchX developers have been notified, so hopefully a fix will be issued soon. Looks like irssi wasn't the only one ;)"

1 of 305 comments (clear)

Min score:

Reason:

Sort:

Most interesting... by phreak404 · 2002-07-02 01:47 · Score: 5, Interesting

Is that when the vulnerability was first submitted they also submitted some interesting finds about the ftp server on BitchX.com serving trojaned and clean versions, depending on the originating IP, demonstrating that the server had been 0wned (more than likely).

Sad that the developers didn't notice sooner, and it makes you wonder how many boxes have now additionally been 0wned because of this.