mod_channel.bas in The Ignition Project ignitionServer 0.3.0 to 0.3.6, and possibly earlier versions, does not properly verify whether a host has the owner privileges required to delete IRC channel access entries, which allows remote attackers to bypass intended restrictions.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ignitionserver | The_ignition_project | 0.3.5 | 0.3.5 |
Ignitionserver | The_ignition_project | 0.3.4 | 0.3.4 |
Ignitionserver | The_ignition_project | 0.3.2 | 0.3.2 |
Ignitionserver | The_ignition_project | 0.3.0 | 0.3.0 |
Ignitionserver | The_ignition_project | 0.3.3 | 0.3.3 |
Ignitionserver | The_ignition_project | 0.3.6 | 0.3.6 |
Ignitionserver | The_ignition_project | 0.3.1 | 0.3.1 |