DEBIAN-CVE-2007-4396

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2007-4396
Import Source
https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-4396.json
JSON Data
https://api.osv.dev/v1/vulns/DEBIAN-CVE-2007-4396
Upstream
Published
2007-08-18T21:17:00Z
Modified
2026-04-28T20:09:44.126359Z
Summary
[none]
Details

Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi before 0.8.11 allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.

References

Affected packages

Debian:11 / irssi-scripts

Package

Name
irssi-scripts
Purl
pkg:deb/debian/irssi-scripts?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20070925

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source 
"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-4396.json"

Debian:12 / irssi-scripts

Package

Name
irssi-scripts
Purl
pkg:deb/debian/irssi-scripts?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20070925

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source 
"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-4396.json"

Debian:13 / irssi-scripts

Package

Name
irssi-scripts
Purl
pkg:deb/debian/irssi-scripts?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20070925

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source 
"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-4396.json"

Debian:14 / irssi-scripts

Package

Name
irssi-scripts
Purl
pkg:deb/debian/irssi-scripts?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20070925

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source 
"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-4396.json"