PT-2005-1234 · Kde · Konversation

Wouter Coekaerts

Published

2005-01-22

Updated

2017-07-11

CVE-2005-0131

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Konversation version 0.15

Description The issue in Konversation inadvertently uses the user-provided password as the nickname when connecting to the IRC server, potentially leaking the password to other users.

Recommendations For Konversation version 0.15, consider avoiding the use of the Quick Connection dialog until a fix is available, and instead, use an alternative method to connect to the IRC server that does not expose the password.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0131

Affected Products

Konversation

PT-2005-1234 · Kde · Konversation

CVE-2005-0131

Related Identifiers

Affected Products

References · 13