Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 CHAT:IRC:UNREALRCD-BACKDOOR

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 CHAT

Keywords

 UnrealIRCd Backdoor

Release Date

 2010/06/17

Update Number

 1716

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

IRC: UnrealIRCd Backdoor


This signature detects attempts to access the Unrealrcd backdoor introduced into source code in 2009. A successful attack allows the attacker to execute arbitrary code.

Extended Description

UnrealIRCd is prone to an unauthorized-access vulnerability due to a backdoor in certain versions of the application. Successful exploits allow remote attackers to execute arbitrary system commands in the context of the affected application. The issue affects Unreal 3.2.8.1 for Linux. Reportedly, package Unreal3.2.8.1.tar.gz downloaded in November 2009 and later is affected. The MD5 sum of the affected file is 752e46f2d873c1679fa99de3f52a274d. Files with the MD5 sum of 7b741e94e867c0a7370553fd01506c66 are not affected.

Affected Products

  • Gentoo Linux
  • Unreal UnrealIRCd 3.2.8.1

References

  • BugTraq: 40820
  • URL: http://unrealircd.com/
  • URL: http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out