Computer Security
[EN] securityvulns.ru no-pyccku


Multiple IRC NowPlaying scripts command injection
Published:16.08.2007
Source:
SecurityVulns ID:8054
Type:local
Threat Level:
3/10
Description:It's possible to inject IRC command thorugh unfiltered song titile.
Affected:IRSSI : ixmmsa.pl 0.3
 IRSSI : l33tmusic.pl 2.00
 IRSSI : mpg123.pl 0.01
 IRSSI : ogg123.pl 0.01
 IRSSI : xmms.pl 2.0
 IRSSI : xmms2.pl 1.1
 IRSSI : xmmsinfo.pl 1.1
 XCHAT : xmms-thing 1.0
 XCHAT : XMMS Remote Control Script 1.07
 XCHAT : Disrok 1.0
 XCHAT : a2x 0.0
 XCHAT : Another xmms-info script 1.0
 XCHAT : XChat-XMMS 0.8
 WEECHAT : now-playing.rb
 WEECHAT : xmms.pl 1.1
 BITCHX : xmms.bx 1.0
Original documentdocumentWouter Coekaerts, Vulnerability in multiple "now playing" scripts for various IRC clients (16.08.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod