DC++ NULL Pointer Remote Denial of Service Vulnerability is a remote crash report submitted by Crise.
The following is NOT posted to any other board as this already have a correct CVE number.
DC++ versions below 0.707 supporting the protocol command ADCGET can be remotely crashed
DC++  is a chat and file sharing application for the Direct Connect  network.
DC++ uses the protocol Neo-Modus Direct Connect  and the command $ADCGET  to request files for download.
The command uses a identifier type, identifier (file reference), starting position for data streaming and the amount of bytes to request.
Security issue description
DC++ fails to validate that the identifier is empty, causing a subsequent invalid derefencing.
The following command can be sent to a cause a remote crash;
$ADCGET list //// 0 -1 ZL1|
See “DC++ NULL Pointer Remote Denial of Service Vulnerability”  for a reference to a report with CVE: CVE-2008-2953. See also  and  for additional informatin.
A fix was deployed to DC+ 0.707 .
Any client older than DC++ 0.707 that incorporate $ADCGet.
 > http://dcplusplus.sourceforge.net/
 > http://en.wikipedia.org/wiki/Direct_Connect_(file_sharing)
 > http://nmdc.sourceforge.net/NMDC.html
 > http://nmdc.sourceforge.net/NMDC.html#_adcget
 > http://www.securityfocus.com/bid/29924
 > http://cvs.berlios.de/cgi-bin/viewcvs.cgi/linuxdcpp/linuxdcpp/client/ShareManager.cpp?r1=1.14&r2=1.15
 > https://dcpp.wordpress.com/2010/01/09/dc-remote-crashexploit-disclosure/
 > http://dcpp.wordpress.com/2011/09/08/how-to-crash-dc-0-674/