10 matches found
Command injection
libpoe-component-irc-perl before v6.32 does not remove carriage returns and line feeds. This can be used to execute arbitrary IRC commands by passing an argument such as "some text\rQUIT" to the 'privmsg' handler, which would cause the client to disconnect from the server...
CVE-2007-4400
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file...
[SECURITY] [DSA 2078-1] New kvirc packages fix arbitrary IRC command execution
------------------------------------------------------------------------ Debian Security Advisory DSA-2078-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 31, 2010 http://www.debian.org/security/faq -...
Crlf injection
Multiple CRLF injection vulnerabilities in 1 xmms-thing 1.0, 2 XMMS Remote Control Script 1.07, 3 Disrok 1.0, 4 a2x 0.0.1, 5 Another xmms-info script 1.0, 6 XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF...
Crlf injection
Multiple CRLF injection vulnerabilities in 1 ixmmsa.pl 0.3, 2 l33tmusic.pl 2.00, 3 mpg123.pl 0.01, 4 ogg123.pl 0.01, 5 xmms.pl 2.0, 6 xmms2.pl 1.1.3, and 7 xmmsinfo.pl 1.1.1.1 scripts for irssi before 0.8.11 allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences...
Crlf injection
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file...
CVE-2007-4400
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file...
CVE-2007-4397
Multiple CRLF injection vulnerabilities in 1 xmms-thing 1.0, 2 XMMS Remote Control Script 1.07, 3 Disrok 1.0, 4 a2x 0.0.1, 5 Another xmms-info script 1.0, 6 XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF...
CVE-2007-4396
Multiple CRLF injection vulnerabilities in 1 ixmmsa.pl 0.3, 2 l33tmusic.pl 2.00, 3 mpg123.pl 0.01, 4 ogg123.pl 0.01, 5 xmms.pl 2.0, 6 xmms2.pl 1.1.3, and 7 xmmsinfo.pl 1.1.1.1 scripts for irssi before 0.8.11 allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences...
CVE-2007-4400
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file...