Lucene search

[email protected]CVE-2005-0130

HistoryApr 14, 2005 - 4:00 a.m.

CVE-2005-0130

2005-04-1404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-0130

perl scripts

konversation 0.15

remote attackers

arbitrary commands

shell metacharacters

irc scripts

nvd

7.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

86.0%

JSON

Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.

CPENameOperatorVersion
berlios:konversationberlios konversationeq0.15

CPE	Name	Operator	Version
berlios:konversation	berlios konversation	eq	0.15

References

lists.grok.org.uk/pipermail/full-disclosure/2005-January/031033.html

marc.info/?l=bugtraq&m=110626383310742&w=2

secunia.com/advisories/13919

secunia.com/advisories/13989

securitytracker.com/id?1012972

www.gentoo.org/security/en/glsa/glsa-200501-34.xml

www.kde.org/info/security/advisory-20050121-1.txt

www.securityfocus.com/bid/12312

exchange.xforce.ibmcloud.com/vulnerabilities/19008

7.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

86.0%

JSON

Related for CVE-2005-0130

cvelist1 ubuntucve1 debiancve1 nessus2 openvas4 gentoo1 freebsd1