KVIrc security issue with releases >= 3.2.0 (Dapper - Gutsy)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kvirc (Ubuntu) |
Fix Released
|
High
|
Rich Johnson | ||
Dapper |
Fix Released
|
High
|
Rich Johnson | ||
Edgy |
Fix Released
|
High
|
Rich Johnson | ||
Feisty |
Fix Released
|
High
|
Rich Johnson | ||
Gutsy |
Fix Released
|
High
|
Rich Johnson |
Bug Description
Binary package hint: kvirc
KVIrc Website News Announcement:
http://
Secunia Advisory:
http://
CVE List:
http://
This issue effects all of the releases in the 3.2.x branch (from Dapper to Gutsy).
Description taken from Secunia:
-------
Secunia Research has discovered a vulnerability in KVIrc, which can be
exploited by malicious people to compromise a user's system.
The vulnerability is caused due to the "parseIrcUrl()" function in
src/kvirc/
URI when building the command for KVIrc's internal script system. This
can be exploited to inject and execute commands for the KVIrc script
system (including the "run" command, which can be leveraged to execute
shell commands) by e.g. tricking a user into opening a specially
crafted "irc://" or similar URI (e.g. "irc6://").
Successful exploitation requires that KVIrc is the default handler for
"irc://" and similar URIs.
Changed in kvirc: | |
assignee: | nobody → nixternal |
importance: | Undecided → High |
status: | New → Confirmed |
assignee: | nobody → nixternal |
importance: | Undecided → High |
status: | New → Confirmed |
assignee: | nobody → nixternal |
importance: | Undecided → High |
status: | New → Confirmed |
assignee: | nobody → nixternal |
importance: | Undecided → Medium |
status: | New → Confirmed |
importance: | Medium → High |
Changed in kvirc: | |
status: | Fix Committed → Fix Released |
status: | Fix Committed → Fix Released |
status: | Fix Committed → Fix Released |
Changed in kvirc: | |
status: | Fix Released → Fix Committed |
Changed in kvirc: | |
status: | Fix Committed → Fix Released |
status: | Fix Committed → Fix Released |
NOTE: I added the Debian Maintainer Field information per the spec in order to properly build the source package.