CVE-2005-0130

NameCVE-2005-0130
DescriptionCertain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
konversation (PTS)jessie, jessie (lts)1.5-2+deb8u1fixed
stretch (security), stretch (lts), stretch1.6.2-2+deb9u1fixed
buster1.7.5-1fixed
bullseye20.12.1-1fixed
trixie, bookworm22.12.3-1fixed
sid24.12.0-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
konversationsource(unstable)0.15-3

Search for package or bug name: Reporting problems