Two vulnerabilities were discovered in the ZNC IRC bouncer which could result in remote code execution or denial of service via invalid encoding .