7.4 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
86.0%
Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.
CPE | Name | Operator | Version |
---|---|---|---|
berlios:konversation | berlios konversation | eq | 0.15 |
lists.grok.org.uk/pipermail/full-disclosure/2005-January/031033.html
marc.info/?l=bugtraq&m=110626383310742&w=2
secunia.com/advisories/13919
secunia.com/advisories/13989
securitytracker.com/id?1012972
www.gentoo.org/security/en/glsa/glsa-200501-34.xml
www.kde.org/info/security/advisory-20050121-1.txt
www.securityfocus.com/bid/12312
exchange.xforce.ibmcloud.com/vulnerabilities/19008