CVE-2001-1056

Name of the Vulnerable Software and Affected Versions ip masq irc version 2.2

Description The issue allows remote attackers to bypass intended firewall restrictions. This is achieved by causing the target system to send a "DCC SEND" request to a malicious server listening on port 6667. As a result, the module may believe the traffic is a valid request and allow the connection to the port specified in the DCC SEND request.

Recommendations For ip masq irc version 2.2, consider restricting access to the IRC DCC helper function in the ip masq irc IP masquerading module to minimize the risk of exploitation. As a temporary workaround, consider disabling the IRC DCC helper functionality until a patch is available.