CVE-2008-5657

Published Dec 17, 2008

Last updated 10 days ago

CVSS info 7.5

Overview

Description: CRLF injection vulnerability in Quassel Core before 0.3.0.3 allows remote attackers to spoof IRC messages as other users via a crafted CTCP message.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79924FF3-6DFE-44A2-BE21-DDC8C671F8B9",
            "versionEndIncluding": "0.3.0.2"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "417555E8-78DE-4C1E-8573-17EF781FE4AC"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:alpha1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92BA24A0-AA72-4F4C-B275-86B36036D582"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:alpha2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CDE6576-000F-4149-BB56-A2102AE5E7F4"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:alpha3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63819AAD-8D1C-45F0-81AB-CD5B5C34EDBF"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:alpha4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCC7024C-7F2C-427B-B979-437251136BB7"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:alpha5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12DDD9FE-A251-469B-8B06-10498A141B25"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E47C7D10-D188-47C0-9BD1-0ECE21216EB5"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:pre:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BA6FDC2-BF11-44DE-A569-CA3A957CF2A2"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.2.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95440603-CF24-4606-9E30-FBB09C9D6C21"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB132B8E-CBB7-4C40-85B3-86CDFE3F44B2"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.3.0:pre:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6315569-0DE5-4D58-BD20-BE2D86B39B98"
          },
          {
            "criteria": "cpe:2.3:a:quassel:quassel_core:0.3.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F2CEE42-1C59-4698-9FFF-567894463D20"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References