KVIrc IRC client buffer overflow
Published:		28.06.2007
Source:		BUGTRAQ
SecurityVulns ID:		7868
Type:		client
Level:		6/10
Description:		Buffer overflow in irc:// URL handler.

Affected:		KVIRC : KVIrc 3.2
CVE:		CVE-2007-2951 (The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc 3.2.0 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an (1) irc:// or (2) irc6:// URI.)

Original document

SECUNIA, [Full-disclosure] Secunia Research: KVIrc irc:// URI Handler Command Execution Vulnerability (28.06.2007)

Discuss:

Read or add your comments to this news (0 comments)