CVE Vulnerabilities

CVE-2007-4400

Published: Aug 18, 2007 | Modified: Oct 15, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.

Affected Software

Name Vendor Start Version End Version
Konversation Konversation * *
Konversation Ubuntu dapper *
Konversation Ubuntu devel *
Konversation Ubuntu edgy *
Konversation Ubuntu feisty *
Konversation Ubuntu gutsy *
Konversation Ubuntu hardy *
Konversation Ubuntu intrepid *
Konversation Ubuntu jaunty *

References