VYPR
Unrated severityNVD Advisory· Published Aug 25, 2009· Updated Jun 16, 2026

CVE-2008-7070

CVE-2008-7070

Description

Argument injection vulnerability in the URI handler in KVIrc 3.4.2 Shiny allows remote attackers to execute arbitrary commands via a " (quote) followed by command line switches in a (1) irc:///, (2) irc6:///, (3) ircs:///, or (4) and ircs6:/// URI. NOTE: this might be due to an incomplete fix for CVE-2007-2951.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Kvirc/Kvirc2 versions
    cpe:2.3:a:kvirc:kvirc:3.4.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:kvirc:kvirc:3.4.2:*:*:*:*:*:*:*
    • (no CPE)range: = 3.4.2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.