Detections
Analytics
UnrealIRCd Backdoor Detection
critical Nessus Plugin ID 46882
Language:
Synopsis
The remote IRC server contains a backdoor.Description
The remote IRC server is a version of UnrealIRCd with a backdoor that allows an attacker to execute arbitrary code on the affected host.Solution
Re-download the software, verify it using the published MD5 / SHA1 checksums, and re-install it.See Also
https://seclists.org/fulldisclosure/2010/Jun/277
https://seclists.org/fulldisclosure/2010/Jun/284
http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt
Plugin Details
Severity: Critical
ID: 46882
File Name: unreal_ircd_backdoor.nasl
Version: 1.16
Type: remote
Family: Backdoors
Published: 6/14/2010
Updated: 4/11/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.3
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:unrealircd:unrealircd
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 6/12/2010
Vulnerability Publication Date: 6/12/2010
Exploitable With
CANVAS (White_Phosphorus)
Metasploit (UnrealIRCD 3.2.8.1 Backdoor Command Execution)
Reference Information
CVE: CVE-2010-2075
BID: 40820