Описание
The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc 3.2.0 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an (1) irc:// or (2) irc6:// URI.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 3.2.0-5ubuntu1.1 |
| devel | released | 3.2.4-5ubuntu2 |
| edgy | released | 3.2.4-3ubuntu1.1 |
| feisty | released | 3.2.4-5ubuntu1.1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
9.3 Critical
CVSS2
Связанные уязвимости
The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc 3.2.0 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an (1) irc:// or (2) irc6:// URI.
The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc 3 ...
The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc 3.2.0 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an (1) irc:// or (2) irc6:// URI.
9.3 Critical
CVSS2