Check for Backdoor in UnrealIRCd

Published: 2010-06-13 15:55:39
CVE Author: NIST National Vulnerability Database (NVD)

CVSS Base Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Summary:
Detection of backdoor in UnrealIRCd.

Technical Details:
Remote attackers can exploit this issue to execute arbitrary system commands within the context of the affected application. The issue affects Unreal 3.2.8.1 for Linux. Reportedly Linux Distribution Package Unreal3.2.8.1.tar.gz downloaded in November 2009 and later is affected. The MD5 sum of the affected file is 752e46f2d873c1679fa99de3f52a274d. Files with MD5 sum of 7b741e94e867c0a7370553fd01506c66 are not affected.

Recommendations:
Install latest version of unrealircd and check signatures of software you're installing.

Detection Type:
remote_analysis

Solution Type:
Vendor Patch

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

https://nvd.nist.gov/vuln/detail/CVE-2010-2075

SecurityFocus Bugtraq ID:

https://www.securityfocus.com/bid/40820

References:

http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt
http://seclists.org/fulldisclosure/2010/Jun/277
http://www.securityfocus.com/bid/40820

Search
Severity
High
CVSS Score
7.5

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.