CVE Reference: CVE-2010-2075

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-2075

Description:
UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which allows remote attackers to execute arbitrary commands.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA40169

OSVDB
  65445

MLIST
  http://www.openwall.com/lists/oss-security/2010/06/14/11

GENTOO
  http://security.gentoo.org/glsa/glsa-201006-21.xml

FULLDISC
  http://seclists.org/fulldisclosure/2010/Jun/284
  http://seclists.org/fulldisclosure/2010/Jun/277

EXPLOIT-DB
  http://www.exploit-db.com/exploits/13853

CONFIRM
  http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt

BID
  40820


Return to the previous page.