CVE 2007-4400
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
See the 
CVE page on Mitre.org
for more details.
