{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-4397", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Multiple CRLF injection vulnerabilities in (1) xmms-thing 1.0, (2) XMMS Remote Control Script 1.07, (3) Disrok 1.0, (4) a2x 0.0.1, (5) Another xmms-info script 1.0, (6) XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "26485", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26485" }, { "name": "25281", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25281" }, { "name": "3036", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/3036" }, { "name": "26488", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26488" }, { "name": "26484", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26484" }, { "name": "26486", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26486" }, { "name": "20070812 Vulnerability in multiple \"now playing\" scripts for various IRC clients", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-August/065227.html" }, { "name": "39575", "refsource": "OSVDB", "url": "http://osvdb.org/39575" }, { "name": "26487", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26487" }, { "name": "20070812 Vulnerability in multiple \"now playing\" scripts for various IRC clients", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/476283/100/0/threaded" }, { "name": "irc-multiple-command-execution(35985)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35985" }, { "name": "26454", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26454" }, { "name": "http://wouter.coekaerts.be/site/security/nowplaying", "refsource": "MISC", "url": "http://wouter.coekaerts.be/site/security/nowplaying" }, { "name": "26455", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26455" }, { "name": "39574", "refsource": "OSVDB", "url": "http://osvdb.org/39574" } ] } }