Summary
The remote host is running a version of the IgnitionServer IRC service which may be vulnerable to a flaw that let remote attacker to gain elevated privileges on the system.
A remote attacker, who is an operator, can supply an unofficial command to the server to obtain elevated privileges and become a global IRC operator.
Solution
Upgrade to IgnitionServer 0.2.1-BRC1 or newer
Severity
Classification
-
CVE CVE-2004-2553 -
CVSS Base Score: 6.0
AV:N/AC:M/Au:S/C:P/I:P/A:P
Related Vulnerabilities
- Apple Safari 'Webkit' Information Disclosure Vulnerability (Mac OS X)
- Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win)
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)
- CA Gateway Security Remote Code Execution Vulnerability
- Asterisk SIP Response Username Enumeration Remote Information Disclosure Vulnerability