| VID |
23095 |
| Severity |
40 |
| Port |
6667 |
| Protocol |
TCP |
| Class |
BNC |
| Detailed Description |
The BNC IRC Proxy server is vulnerable to an authentication bypass vulnerability.
BNC is a freely available IRC (Internet Relay Chat) proxy server for Microsoft Windows, Unix, and Linux-based operating systems. BNC versions prior to 2.9.1 are vulnerable to this vulnerability, which allows a remote attacker to gain access to a proxy without supplying a valid password.
* Platforms Affected:
James Seter, BNC prior to 2.9.1
Microsoft Windows Any version
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of BNC (2.9.1 or later), available from the BNC Project Web site at http://www.gotbnc.com/ |
| Related URL |
CVE-2004-2612 (CVE) |
| Related URL |
11650 (SecurityFocus) |
| Related URL |
18103 (ISS) |
|
