Debian Security Advisory 1735-1 - It was discovered that znc, an IRC proxy/bouncer, does not properly sanitize input contained in configuration change requests to the webadmin interface. This allows authenticated users to elevate their privileges and indirectly execute arbitrary commands (CVE-2009-0759).
c7050e28cdec2b23cd3e001e95a49c799e6f63b9f49b26ce0d87a88aafdde18dGentoo Linux Security Advisory GLSA 200903-02 - A vulnerability in ZNC allows for privilege escalation. cnu discovered multiple CRLF injection vulnerabilities in ZNC's webadmin module. Versions less than 0.066 are affected.
4d2ca7727fe41b71d1b6c9ba909a41f841b7b15e41a0f7ac60d75f39c8058d2e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed