CVE-2005-0130
First published: Sat Jan 22 2005(Updated: )
Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Berlios Konversation | =0.15 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/031033.html
- http://www.kde.org/info/security/advisory-20050121-1.txt
- http://www.gentoo.org/security/en/glsa/glsa-200501-34.xml
- http://www.securityfocus.com/bid/12312
- http://securitytracker.com/id?1012972
- http://secunia.com/advisories/13919
- http://secunia.com/advisories/13989
- http://marc.info/?l=bugtraq&m=110626383310742&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19008
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/berlios
- canonical/berlios konversation
- version/berlios konversation/0.15