Multiple CRLF injection vulnerabilities in (1) xmms-thing 1.0, (2) XMMS Remote Control Script 1.07, (3) Disrok 1.0, (4) a2x 0.0.1, (5) Another xmms-info script 1.0, (6) XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ricardo mesquita ogg123 0.01 |
||
simon xmms2 1.1.3 |
||
mikachu l33t xmms music showing script 2.00 |
||
ricardo mesquita mpg123 0.01 |
||
kristof korwisi ixmmsa 0.3 |
||
tuomas jormola xmmsinfo 1.1.1.1 |
||
irssi irssi |