CVE-2007-4400

EPSS 2.7%

Published: 8/18/2007Modified: 4/28/2026

Description

CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.

Affected packages (1)

Debian/konversationfrom 0, < 1.0.1-4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-4400