Multiple Vendor IRC Daemon Debug Format String

Critical Nessus Plugin ID 11783


The remote chat server is affected by a remote command execution vulnerability.


The remote host is running a version of ircd that could be vulnerable to a format string attack.

An attacker could exploit this flaw to execute arbitrary code on this host, or simply to disable this service remotely.


Upgrade to one of the following IRC daemon : AndromedeIRCd 1.2.4 DALnet Bahamut IRCd 1.4.36 digatech digatech IRCd 1.2.2 methane methane IRCd 0.1.2

See Also

Plugin Details

Severity: Critical

ID: 11783

File Name: ircd_format_string.nasl

Version: $Revision: 1.13 $

Type: remote

Published: 2003/06/27

Modified: 2011/12/15

Dependencies: 11156, 11153, 17975

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2003/06/26

Reference Information

CVE: CVE-2003-0478

BID: 8038

OSVDB: 11827, 58937, 58938, 58939, 58940