Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ignitionServer < 0.3.6p1 Channel Locking Remote DoS

High

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running an ignitionServer IRC server. This version of ignitionServer is reported to be prone to a remote remote denial of service in the way that the server handles channel locking. Specifically, a non-operator can create a locked channel which cannot be unlocked by an authorized operator. The only way to clear the channel would be to reboot the server. This can cause a loss of availability.

Solution

Upgrade to version 0.3.6p1 or higher.