Inadequate Verification of Owner Privileges in Ignition Project ignitionServer

Inadequate Verification of Owner Privileges in Ignition Project ignitionServer

CVE-2005-1640 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

mod_channel.bas in The Ignition Project ignitionServer 0.3.0 to 0.3.6, and possibly earlier versions, does not properly verify whether a host has the owner privileges required to delete IRC channel access entries, which allows remote attackers to bypass intended restrictions.

Learn more about our Cis Benchmark Audit For Server Software.