Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-0129 — Improper Neutralization of Variable Name Delimiters in Konversation

CWE-154 — Improper Neutralization of Variable Name Delimiters6 documents6 sources

Severity

7.5HIGHNVD

EPSS

14.9%

top 5.44%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Konversation Debian Konversation Berlios Konversation

Timeline

PublishedApr 14

Latest updateMay 1

Description

The Quick Buttons feature in Konversation 0.15 allows remote attackers to execute certain IRC commands via a channel name containing "%" variables, which are recursively expanded by the Server::parseWildcards function when the Part Button is selected.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/konversation< konversation 0.15-3 (bookworm)

▶Debiankonversation/konversation< 0.15-3+3

▶NVDberlios/konversation0.15

🔴Vulnerability Details

GHSA

GHSA-xwmj-j245-94g9: The Quick Buttons feature in Konversation 0↗2022-05-01

▶

OSV

CVE-2005-0129: The Quick Buttons feature in Konversation 0↗2005-04-14

▶

💥Exploits & PoCs

Exploit-DB

konversation irc client 0.15 - Multiple Vulnerabilities↗2005-01-19

▶

📋Vendor Advisories

Debian

CVE-2005-0129: konversation - The Quick Buttons feature in Konversation 0.15 allows remote attackers to execut...↗2005

▶

📐Framework References

CWE

Improper Neutralization of Variable Name Delimiters↗

▶