Konversation Perl script may allow execution of code
| konversation-perlscript-execute-code (19008) |  High Risk |
Description:
Konversation could allow a remote attacker to execute arbitrary code. Perl scripts that are included in Konversation do not properly handle user-supplied input. A remote attacker in control of a malicious server could create a specially-crafted channel, join the channel, and supply arbitrary shell commands, allowing the attacker to execute the commands on a victim's system and possibly gain unauthorized access to the system.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of Konversation (0.15.1 or later), available from the Konversation Web site. See References.
For Gentoo Linux:
Refer to Gentoo Linux Security Announcement GLSA 2005-01-34 for patch, upgrade, or suggested workaround information. See References.
References:
- BugTraq Mailing List, Wed Jan 19 2005 - 10:39:46 CST : Multiple vulnerabilities in Konversation.
- Konversation Web site: Konversation.
- Securiteam Exploits 1.23.2005: Multiple Vulnerabilities in Konversation (Exploit).
- BID-12312: Konversation IRC Client Multiple Remote Vulnerabilities
- CVE-2005-0130: Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC sripts.
- GLSA-200501-34: Konversation: Various vulnerabilities
- SA13919: Konversation Shell Command Injection Vulnerabilities
- SECTRACK ID: 1012972: KDE Konversation Bugs May Allow a Remote User to Cause Command Execution on a Target User`s System
Platforms Affected:
- Gentoo Linux
- KDE KDE
- Konversation Konversation 0.15
Reported:
Jan 21, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net