FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

sircd -- remote operator privilege escalation vulnerability

Affected packages
0 <= sircd


VuXML ID e92d8f6b-a1c0-11db-9ddc-0011098b2f36
Discovery 2003-11-20
Entry 2007-01-15

Secunia reports:

A vulnerability has been reported in sircd, which can be exploited by malicious users to gain operator privileges. The problem is that any user reportedly can set their usermode to operator. The vulnerability has been reported in versions 0.5.2 and 0.5.3. Other versions may also be affected.


Bugtraq ID 9097