mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
112 lines
4.0 KiB
JSON
112 lines
4.0 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "secalert@redhat.com",
|
|
"ID": "CVE-2010-2785",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \\ (backslash) characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \\r and \\40 sequences, a different vulnerability than CVE-2010-2451 and CVE-2010-2452."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "http://bugs.gentoo.org/show_bug.cgi?id=330111",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://bugs.gentoo.org/show_bug.cgi?id=330111"
|
|
},
|
|
{
|
|
"name": "FEDORA-2010-11524",
|
|
"refsource": "FEDORA",
|
|
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044643.html"
|
|
},
|
|
{
|
|
"name": "40796",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/40796"
|
|
},
|
|
{
|
|
"name": "66648",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/66648"
|
|
},
|
|
{
|
|
"name": "https://svn.kvirc.de/kvirc/changeset/4693",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://svn.kvirc.de/kvirc/changeset/4693"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20100729 Re: CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter",
|
|
"refsource": "MLIST",
|
|
"url": "http://marc.info/?l=oss-security&m=128041011428629&w=2"
|
|
},
|
|
{
|
|
"name": "SUSE-SR:2010:014",
|
|
"refsource": "SUSE",
|
|
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20100728 CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter",
|
|
"refsource": "MLIST",
|
|
"url": "http://openwall.com/lists/oss-security/2010/07/28/1"
|
|
},
|
|
{
|
|
"name": "40727",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/40727"
|
|
},
|
|
{
|
|
"name": "https://svn.kvirc.de/kvirc/ticket/858",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://svn.kvirc.de/kvirc/ticket/858"
|
|
},
|
|
{
|
|
"name": "FEDORA-2010-11506",
|
|
"refsource": "FEDORA",
|
|
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044625.html"
|
|
}
|
|
]
|
|
}
|
|
} |