Lucene search

[email protected]NVD:CVE-2005-0130

HistoryApr 14, 2005 - 4:00 a.m.

CVE-2005-0130

2005-04-1404:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.013

Percentile

86.1%

JSON

Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.

Affected configurations

Nvd

Node

berlioskonversationMatch0.15

VendorProductVersionCPE
berlioskonversation0.15cpe:2.3:a:berlios:konversation:0.15:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
berlios	konversation	0.15	cpe:2.3:a:berlios:konversation:0.15:::::::*

References

lists.grok.org.uk/pipermail/full-disclosure/2005-January/031033.html

marc.info/?l=bugtraq&m=110626383310742&w=2

secunia.com/advisories/13919

secunia.com/advisories/13989

securitytracker.com/id?1012972

www.gentoo.org/security/en/glsa/glsa-200501-34.xml

www.kde.org/info/security/advisory-20050121-1.txt

www.securityfocus.com/bid/12312

exchange.xforce.ibmcloud.com/vulnerabilities/19008

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.013

Percentile

86.1%

JSON

Related for NVD:CVE-2005-0130

cvelist1 ubuntucve1 cve1 debiancve1 openvas4 nessus2 gentoo1 freebsd1