CVE-2007-4400
EPSS 2.7%
Description
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
How to fix CVE-2007-4400
To remediate CVE-2007-4400, upgrade the affected package to a fixed version below.
- Debian/konversation—upgrade to 1.0.1-4 or later
Is CVE-2007-4400 being exploited?
Low — EPSS is 2.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.0.1-4