Bugtraq mailing list archives
Backdoor in ircN, popular mIRC script.
From: kkr () engulf com (Nick Koscianski)
Date: Thu, 23 Jul 1998 20:58:33 -0400
A backdoor has been found in ircN, possibly the most popular mIRC script. Using the command /ctcpreply, any user can make someone using the backdoored versions do whatever they want. For example: /ctcpreply Dianora ping $mode(#us-opers,+o,hax0r) will force Dianora to give ops to hax0r in #us-opers. also, they can be forced to run arbitrary programs, for example: /ctcpreply Dianora $run(echo,"echo,y,|,format,c:\",>,c:\autoexec.bat) will format this person's hard drive..definately not good. A bug fix for this problem can be found at http://www.vode.org/ircN -KKR
Current thread:
- Backdoor in ircN, popular mIRC script. Nick Koscianski (Jul 23)
- Re: Backdoor in ircN, popular mIRC script. Benoit Lefebvre (Jul 23)
- espernet irc services McClain Looney (Jul 24)
- smal bug in icmpinfo Adrian Dabrowski (Jul 26)
- Re: smal bug in icmpinfo Rich Lafferty (Jul 26)
- CFINGERD root security hole John Goerzen (Jul 23)
- Re: CFINGERD root security hole Roscinante (Jul 24)
- Microsoft Security Bulletin (MS98-006) Aleph One (Jul 24)
- SECURITY: new ncurses packages twiztah (Jul 24)
- FW: Microsoft Security Bulletin (MS98-007) MacGyver (Jul 24)
- Microsoft Security Bulletin (MS98-007) Aleph One (Jul 25)
(Thread continues...)
- Re: Backdoor in ircN, popular mIRC script. Benoit Lefebvre (Jul 23)