7.5
CVE-2005-0130
- EPSS 2.9%
- Veröffentlicht 14.04.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:33
- CVE-Watchlists
- Unerledigt
Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Berlios ≫ Konversation Version0.15
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.9% | 0.851 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/031033.html
http://marc.info/?l=bugtraq&m=110626383310742&w=2
http://secunia.com/advisories/13919
http://secunia.com/advisories/13989
http://securitytracker.com/id?1012972
http://www.gentoo.org/security/en/glsa/glsa-200501-34.xml
http://www.kde.org/info/security/advisory-20050121-1.txt
http://www.securityfocus.com/bid/12312
https://exchange.xforce.ibmcloud.com/vulnerabilities/19008