| VID |
23129 |
| Severity |
40 |
| Port |
6667 |
| Protocol |
TCP |
| Class |
IRCD |
| Detailed Description |
The ignitionServer, according to its banner, has an IRC operator privilege escalation vulnerability. ignitionServer is an Internet Relay Chat (IRC) Server for Microsoft Windows platforms. ignitionServer versions prior to 0.2.1 could allow a remote attacker to gain elevated privileges on the affected system. A remote attacker, who is an operator, can supply an unofficial command to the server to obtain elevated privileges and become a global IRC operator.
* Note: This check solely relied on the banner of the remote IRC server to assess this vulnerability, so this might be a false positive.
* References:
http://secunia.com/advisories/11017/
http://www.securitytracker.com/alerts/2004/Mar/1009522.html
* Platforms Affected:
ignitionServer versions prior to 0.2.1
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of ignitionServer (0.2.1-BRC1 or later), available from the Ignition Project Download Web page at http://www.ignition-project.com/download |
| Related URL |
CVE-2004-2553 (CVE) |
| Related URL |
9783 (SecurityFocus) |
| Related URL |
15363 (ISS) |
|
