PT-2007-5590 · Undernet · Ircu

Published

2007-08-18

Updated

2018-10-15

CVE-2007-4409

CVSS v2.0

5.1

Medium

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions ircu versions 2.10.12.01 through 2.10.12.05

Description A race condition issue exists, allowing remote attackers to set a new Apass during a netburst by arranging for ops privilege to be granted before the mode arrives.

Recommendations For ircu versions 2.10.12.01 through 2.10.12.05, consider restricting access to ops privileges until a fix is available to prevent exploitation of this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-4409

Affected Products

Ircu

PT-2007-5590 · Undernet · Ircu

CVE-2007-4409

Related Identifiers

Affected Products

References · 6