Quassel · Quassel Core · CVE-2008-5657
**Name of the Vulnerable Software and Affected Versions**
Quassel Core versions prior to 0.3.0.3
**Description**
A CRLF injection issue allows remote attackers to spoof IRC messages as other users via a crafted CTCP message.
**Recommendations**
For versions prior to 0.3.0.3, update to version 0.3.0.3 or later to resolve the issue.