Full Disclosure mailing list archives
Re: IRC DCC Exploit
From: <andrewg () d2 net au>
Date: Fri, 17 Oct 2003 22:07:52 +1000 (EST)
Normally I wouldn't of replied, but due to the other answers people have provided, I will.
Hey, I want to know about DCC Exploit, 1) What is Irc DCC Exploit ?
Its a denial of service in MIRC versions >=6.0 and <6.12
2) How it works ?
From what I've told, it causes a out of bounds read error in the MIRC
client , after parsing the string.
3) What is its Source/code ?
I've probably got the thingy in a log, iirc, its dcc send/get x x x x x x x x x x x x x x x x x x x x more or less (around 12 or something.
4) How to protect from this exploit ?
Either upgrade to MIRC 6.12, or do /ignore -wd * which will prevent it from happening.
5) And in which language people were made ?
?!
I am asking you about it because it is harmfull full, when i join channel i disconnected 4 times with Critical Error. so please reply me as soon as possible. Thanks Best Regards from, Farrukh Hussain.
Hope this helps, Andrew Griffiths P.S No, I don't care this affects windows people, I'm sure if they notice their client keeps on crashing, they'll look for more information. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- IRC DCC Exploit Farrukh Hussain (Oct 17)
- Re: IRC DCC Exploit Andrei Galca-Vasiliu (Oct 17)
- Re: IRC DCC Exploit Florian Weimer (Oct 17)
- RE: IRC DCC Exploit Ricky Blaikie (Oct 17)
- Re: IRC DCC Exploit andrewg (Oct 17)
- Re: IRC DCC Exploit S G Masood (Oct 17)
- Re: IRC DCC Exploit Christian Lycos (Oct 17)
- Re: IRC DCC Exploit Ferdinand Klinzer (Oct 17)
- Re: IRC DCC Exploit Cael Abal (Oct 17)
- Re: IRC DCC Exploit Ferdinand Klinzer (Oct 17)
- <Possible follow-ups>
- RE: IRC DCC Exploit Syed Imran Ali (Oct 17)