Full Disclosure mailing list archives

Re: mirc 6.14

From: "Bram Matthys (Syzop)" <syzop () vulnscan org>
Date: Sun, 28 Mar 2004 18:25:20 +0200

Hi,

Mare Knight wrote:

every one is blabbling about some new mirc 6.14 dcc exploit. Is this true?
has any body confirmed this?


It was false.
It started on an IRC security mailinglist some days ago where
a ("trusted") person claimed a friend of him got hacked by this and he
was able to reproduce the bug on himself too.
Then, quite some networks and news sites started to broadcast msgs
and publish warnings and stuff...
It turned out it was just a security bug in some mIRC script [1]...
So later on, all sites/irc networks retracted all their claims [2].

        Bram Matthys (Syzop).

[1] You might hear more on this later today/tomorrow
[2] http://kline.dal.net/exploits/
    http://www.quakenet.org/
    http://www.irc-junkie.org/
    etc...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

mirc 6.14 Mare Knight (Mar 28)
- Re: mirc 6.14 Richard Maudsley (Mar 28)
- Re: mirc 6.14 Gadi Evron (Mar 28)
- Re: mirc 6.14 Bram Matthys (Syzop) (Mar 28)
- Re: mirc 6.14 morning_wood (Mar 28)
- Re: mirc 6.14 Mattias Ahnberg (Mar 28)