Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2004 David MaciejakOPENVAS:136141256231014388
HistoryNov 03, 2005 - 12:00 a.m.

IgnitionServer IIRC Operator Privilege Escalation Vulnerability

2005-11-0300:00:00
Copyright (C) 2004 David Maciejak
plugins.openvas.org
10

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.003

Percentile

71.5%

JSON

IgnitionServer IRC service may be vulnerable to a flaw that let
an remote attacker to gain elevated privileges on the system.

# SPDX-FileCopyrightText: 2004 David Maciejak
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.14388");
  script_version("2023-08-03T05:05:16+0000");
  script_tag(name:"last_modification", value:"2023-08-03 05:05:16 +0000 (Thu, 03 Aug 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_cve_id("CVE-2004-2553");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/9783");
  script_xref(name:"OSVDB", value:"4121");
  script_tag(name:"cvss_base", value:"6.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:S/C:P/I:P/A:P");
  script_name("IgnitionServer IIRC Operator Privilege Escalation Vulnerability");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2004 David Maciejak");
  script_family("Privilege escalation");
  script_dependencies("ircd.nasl");
  script_require_ports("Services/irc", 6667);
  script_mandatory_keys("ircd/banner");

  script_tag(name:"solution", value:"Update to version 0.2.1-BRC1 or later.");

  script_tag(name:"summary", value:"IgnitionServer IRC service may be vulnerable to a flaw that let
  an remote attacker to gain elevated privileges on the system.");

  script_tag(name:"impact", value:"A remote attacker, who is an operator, can supply an unofficial
  command to the server to obtain elevated privileges and become a global IRC operator.");

  script_tag(name:"qod_type", value:"remote_banner");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("misc_func.inc");
include("port_service_func.inc");

port = service_get_port(default:6667, proto:"irc");

banner = get_kb_item("irc/banner/" + port);
if(!banner || "ignitionServer" >!< banner)
  exit(0);

if(egrep(pattern:".*ignitionServer 0\.([01]\.|2\.0).*", string:banner)) {
  security_message(port:port);
  exit(0);
}

exit(99);

Related

openvas 1
cvelist 1
nessus 1
cve 1
nvd 1
openvas
openvas
IgnitionServer Irc operator privilege escalation vulnerability
2005-11-03 00:00:00
cvelist
cvelist
CVE-2004-2553
2005-11-21 11:00:00
nessus
nessus
ignitionServer umode Command Global Operator Privilege Escalation
2004-08-27 00:00:00
cve
cve
CVE-2004-2553
2005-11-21 11:00:00
nvd
nvd
CVE-2004-2553
2004-12-31 05:00:00

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.003

Percentile

71.5%

JSON
Related for OPENVAS:136141256231014388
openvas1cvelist1nessus1cve1nvd1