mIRC allows password protection to be bypassed

[scalar <scalar () SHADOWVX COM>]

Hello,
     I have found a hole in mIRC (a popular IRC client for the Windows platform) that allows a malicious user to 
subvert the optional password on the mIRC.exe binary. Full details are in the attached advisory. The advisory is also 
available at http://chronix.shadowvx.com/advisories/scalar-01-02.txt

thanks,

scalar

Attachment: scalar-01-02.txt
Description: