Vulnerabilities > CVE-2004-2553 - Unspecified vulnerability in the Ignition Project Ignitionserver 0.1.2/0.1.2R1/0.1.2R2

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
the-ignition-project
nessus
NVD
Published: 2004-12-31
Updated: 2024-11-20

Summary

The Ignition Project ignitionServer 0.1.2 through 0.1.2-R2 allows remote authenticated users with local IRC operator privileges to obtain global IRC operator privileges by using the unofficial umode command with the +ORD argument.

Vulnerable Configurations

Part Description Count
Application
The_Ignition_Project
3

Nessus

NASL familyMisc.
NASL idIRCD_IGNITION_IRCOP_VULN.NASL
descriptionThe remote host is running a version of the IgnitionServer IRC service which might be vulnerable to a flaw that lets a remote attacker gain elevated privileges on the system. A local IRC operator can supply an unofficial command to the server to obtain elevated privileges and become a global IRC operator.
last seen2020-06-01
modified2020-06-02
plugin id14388
published2004-08-27
reporterThis script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/14388
titleignitionServer umode Command Global Operator Privilege Escalation

References