Home > Vulnerability Database > CVE-2005-0130

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2005-0130

Date: January 22, 2005

Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.

Severity Score

7.3

Related Resources (12)

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/19008

Url: http://www.securityfocus.com/bid/12312

Url: http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/031033.html

Url: http://www.gentoo.org/security/en/glsa/glsa-200501-34.xml

Url: http://secunia.com/advisories/13989

Url: http://secunia.com/advisories/13919

Url: http://marc.info/?l=bugtraq&m=110626383310742&w=2

Url: https://nvd.nist.gov/vuln/detail/CVE-2005-0130

Url: http://www.kde.org/info/security/advisory-20050121-1.txt

Url: http://securitytracker.com/id?1012972

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2005-0130

Url: https://www.mend.io/vulnerability-database/CVE-2005-0130

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us