Bugtraq mailing list archives
Re: Another NEW mIRC bug and ALL mIRC Exploit patches
From: tarmon () HOTMAIL COM (Mike Zimmerman)
Date: Sat, 25 Jul 1998 21:36:34 -0400
The author of mIRC has released v5.41 as of today to address these security holes and various other bugs in the 5.4 release. It can be found at http://www.mirc.co.uk/. Mike Zimmerman At 08:17 AM 7/24/98 -0400, Derek Reynolds wrote:
History of Events: (Remote Exploits) 07/18/98 - Someone on DALnet finds problem with DCC SEND and DCC RESUME (exploit made) 07/20/98 - $asctime bug revealed 07/21/98 - myn discovers a large problem with $calc and notices that most scripts that use on ctcpreply ping perform a $calc. He then implements the $asctime bug into on ctcpreply ping which ables a user to remotely crash the mIRC client 07/22/98 - v9 evaluates myn's bug finding and plays with on ctcpreply some more and finds that $calc evaluates custom alias's or
functions.
07/23/98 - Some uninformed person believes that it is on IRCN native and posts a message to rootshell.com and forgets the big picture. Any mIRC script that makes use of the event "ON CTCPREPLY PING" which does a $calc or any other remote/event that uses $calc is exploitable. Most people are only patching themselves against the $calc bug, but are still wondering why their mIRC keeps crashing.. Its because they have not patched themselves against the 2 other remote mIRC exploits. Below is the patch for ALL known remote mIRC exploits. to install it type "/load -rs m54-fix-sploits.mrc" Peace. myn@efnet
Current thread:
- Re: CFINGERD root security hole, (continued)
- Re: CFINGERD root security hole Roscinante (Jul 24)
- Microsoft Security Bulletin (MS98-006) Aleph One (Jul 24)
- SECURITY: new ncurses packages twiztah (Jul 24)
- FW: Microsoft Security Bulletin (MS98-007) MacGyver (Jul 24)
- Microsoft Security Bulletin (MS98-007) Aleph One (Jul 25)
- Alert: New Source Bug Affect Sun JWS Aleph One (Jul 25)
- Annex DoS Albert Nubdy (Jul 25)
- Re: Annex DoS Matt Carter (Jul 26)
- Security warning: Netscape https & proxies Henrik Nordstrom (Jul 26)
- Another NEW mIRC bug and ALL mIRC Exploit patches Derek Reynolds (Jul 24)
- Re: Another NEW mIRC bug and ALL mIRC Exploit patches Mike Zimmerman (Jul 25)
- small bug in 5/98 distribution Sun 4070627 Lloyd Vancil (Jul 24)
- Re: small bug in 5/98 distribution Sun 4070627 Eugene Bradley (Jul 24)
- Re: small bug in 5/98 distribution Sun 4070627 Brandon Hume (Jul 26)
- Re: small bug in 5/98 distribution Sun 4070627 Casper Dik (Jul 27)
- FW: Alert: Arbitrary code execution via email or news Patrick Oonk (Jul 27)
- ISS Security Advisory -- MS Exchange 5.x Jon Larimer (Jul 27)
- [ NT SECURITY ALERT ] New Local GetAdmin Exploit MJE (Jul 27)
- Microsoft Security Bulletin (MS98-009) Aleph One (Jul 28)
- Microsoft Security Bulletin (MS98-008) Aleph One (Jul 27)
- Fwd: Any user can panic OpenBSD machine Michael Fuhr (Jul 27)
- Re: small bug in 5/98 distribution Sun 4070627 Eugene Bradley (Jul 24)