|
|
Subscribe / Log in / New account

konversation: arbitrary code execution

Package(s):konversation CVE #(s):CVE-2007-4400
Created:April 9, 2008 Updated:April 9, 2008
Description:

From the Red Hat bugzilla:

Media script (/usr/share/apps/konversation/scripts/media) that is distributed with konversation package reportedly does not escape tags from media files corr[e]ctly allowing command injection into IRC channel.

Alerts:
Fedora FEDORA-2008-2062 konversation 2008-04-08
Fedora FEDORA-2008-2122 konversation 2008-04-08
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds