Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-7070HistoryAug 25, 2009 - 10:30 a.m.
CVE-2008-7070
2009-08-2510:30:00
Debian Security Bug Tracker
security-tracker.debian.org
12
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.041 Low
EPSS
Percentile
92.2%
Argument injection vulnerability in the URI handler in KVIrc 3.4.2 Shiny allows remote attackers to execute arbitrary commands via a " (quote) followed by command line switches in a (1) irc:///, (2) irc6:///, (3) ircs:///, or (4) and ircs6:/// URI. NOTE: this might be due to an incomplete fix for CVE-2007-2951.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | kvirc | < 4:5.0.0+dfsg-6 | kvirc_4:5.0.0+dfsg-6_all.deb |
| Debian | 11 | all | kvirc | < 4:5.0.0+dfsg-5 | kvirc_4:5.0.0+dfsg-5_all.deb |
| Debian | 999 | all | kvirc | < 4:5.2.4-1 | kvirc_4:5.2.4-1_all.deb |
| Debian | 13 | all | kvirc | < 4:5.2.4-1 | kvirc_4:5.2.4-1_all.deb |
Related
prion
prion
Design/Logic Flaw
2009-08-25 10:30:00
Code injection
2007-06-26 18:30:00
nvd
nvd
CVE-2008-7070
2009-08-25 10:30:00
CVE-2007-2951
2007-06-26 18:30:00
cve
cve
CVE-2008-7070
2009-08-25 10:30:00
CVE-2007-2951
2007-06-26 18:30:00
ubuntucve
ubuntucve
CVE-2008-7070
2009-08-25 00:00:00
CVE-2007-2951
2007-06-26 00:00:00
cvelist
cvelist
CVE-2008-7070
2009-08-25 10:00:00
CVE-2007-2951
2007-06-26 18:00:00
securityvulns
securityvulns
[Full-disclosure] Secunia Research: KVIrc irc:// URI Handler Command Execution Vulnerability
2007-06-28 00:00:00
KVIrc IRC client buffer overflow
2007-06-28 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200709-02 (kvirc)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200709-02 (kvirc)
2008-09-24 00:00:00
KVIrc URI Handler Argument Injection Vulnerability
2009-09-02 00:00:00
nessus
nessus
GLSA-200709-02 : KVIrc: Remote arbitrary code execution
2007-09-14 00:00:00
openSUSE 10 Security Update : kvirc (kvirc-3953)
2007-10-17 00:00:00
debiancve
debiancve
CVE-2007-2951
2007-06-26 18:30:00
gentoo
gentoo
KVIrc: Remote arbitrary code execution
2007-09-13 00:00:00
seebug
seebug
KVIrc irc:// URI处理器远程命令注入漏洞
2007-06-29 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.041 Low
EPSS
Percentile
92.2%
Related for DEBIANCVE:CVE-2008-7070