Bugtraq mailing list archives
Re: mIRC Worm
From: nigelr () NELGIN RSN HP COM (Nigel Reed)
Date: Thu, 18 Dec 1997 11:47:34 -0600
It might also be worth pointing out how to get rid of the script.ini program in the first place for those who are not sure. Load up mIRC /remote off /unload -rs script.ini /remove script.ini /sreq ask /remote on The defaults for mIRC ARE safe. They require the user accept the file. Everyone should be aware not to accept files which are from an unknown or dubious source. The rule applies for http and ftp so IRC/DCC is no different. This problem is also addressed in mIRC 5.3 which will remove script.ini and it also creates a new download directory for the user. Basically protecting the user against themselves. As for mIRC being a mess, I can say the same about ircii, but we wont go into that now. Regards Nigel -- Nigel Reed Pager: 214 322 6311 Enter area code +number Consultant Work: 972 497 4877 Home Email: nigel () nelgin cmpu net HP Convex Division, 3000 Waterview Parkway, Richardson, Tx, 75080
Current thread:
- Re: CERT Advisory CA-97.28 - Teardrop_Land, (continued)
- Re: CERT Advisory CA-97.28 - Teardrop_Land Alan Cox (Dec 16)
- Re: CERT Advisory CA-97.28 - Teardrop_Land Ron Holt (Dec 19)
- SGI Security Advisory 19971201-01-P1391 - statd(1M) Buffer Overrun SGI Security Coordinator (Dec 16)
- CERT Vendor-Initiated Bulletin VB-97.16 - CrackLib Aleph One (Dec 17)
- SNI-22: RADIUS Advisory Secure Networks Inc. (Dec 17)
- Re: SNI-22: RADIUS Advisory miguel a.l. paraz (Dec 17)
- CGI security hole in EWS (Excite for Web Servers) Marc Merlin (Dec 17)
- Re: CGI security hole in EWS (Excite for Web Servers) carson () tla org (Dec 18)
- Re: SNI-22: RADIUS Advisory Thom Henderson (Dec 18)
- mIRC Worm Aleph One (Dec 18)
- Re: mIRC Worm Nigel Reed (Dec 18)
- Re: mIRC Worm Paul Wilson (Dec 18)
- StackGuard: Automatic Protection From Stack-smashing Attacks Crispin Cowan (Dec 18)
- Re: StackGuard: Automatic Protection From Stack-smashing Attacks Tim Newsham (Dec 19)
- Re: StackGuard: Automatic Protection From Stack-smashing Attacks Theo de Raadt (Dec 19)
- Xotpcalc, version 1.0 Ivan Nejgebauer (Dec 19)
- Re: CERT Advisory CA-97.28 - Teardrop_Land Alan Cox (Dec 16)
- Buffer Overrun / DOS in /bin/passwd (at least Redhat Linux 4.2) Alex Mottram (Dec 19)
- Re: Buffer Overrun / DOS in /bin/passwd (at least Redhat Linux Alec Muffett (Dec 19)
- f00f.patch (fwd) Ejovi (Dec 19)
- Re: Buffer Overrun / DOS in /bin/passwd (at least Redhat Linux Theo de Raadt (Dec 19)
- Administratrivia Aleph One (Dec 19)