KVIrc URI Handler Remote Command Execution Vulnerability

info
discussion
exploit
solution
references

KVIrc URI Handler Remote Command Execution Vulnerability

KVIrc is prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input.

Exploiting this issue would allow an attacker to execute arbitrary commands within the context of the affected application.

KVIrc 3.4.2 is vulnerable; other versions may also be affected.