Riotz
12-22-2002, 01:11 PM
I don't see this exploit being too much of a problem on the AO chat server. But here it is anyways.
From: http://kline.dal.net/exploits/
----
SECURITY ALERT
Buffer Overflow in all mIRC versions prior to 6.0
A serious vulnerability has been discovered in all versions of mIRC up to version 5.91 (mIRC 6.0 is not affected). This vulnerability can allow malicious users to gain unauthorized access to your system remotely and potentially plant trojan horse programmes or steal data. This vulnerability affects all versions of mIRC prior to 6.0 running on all current Microsoft Windows platforms but is particularly serious for users who also routinely use Internet Explorer as their web browser.
This vulnerability and the associated exploit are in the public domain and are possibly being exploited already.
All users of mIRC prior to the current version are STRONGLY ADVISED TO UPGRADE IMMEDIATELY.
Upgrades to version mIRC 6.0 are available for download from the mIRC website at http://www.mirc.co.uk. As always, please ensure you download only from a trusted source.
The original advisory for this exploit was posted to BugTraq on Feb 03 2002 and can be found at the following URL :
http://www.uuuppz.com/research/adv-001-mirc.htm
-----
From: http://kline.dal.net/exploits/
----
SECURITY ALERT
Buffer Overflow in all mIRC versions prior to 6.0
A serious vulnerability has been discovered in all versions of mIRC up to version 5.91 (mIRC 6.0 is not affected). This vulnerability can allow malicious users to gain unauthorized access to your system remotely and potentially plant trojan horse programmes or steal data. This vulnerability affects all versions of mIRC prior to 6.0 running on all current Microsoft Windows platforms but is particularly serious for users who also routinely use Internet Explorer as their web browser.
This vulnerability and the associated exploit are in the public domain and are possibly being exploited already.
All users of mIRC prior to the current version are STRONGLY ADVISED TO UPGRADE IMMEDIATELY.
Upgrades to version mIRC 6.0 are available for download from the mIRC website at http://www.mirc.co.uk. As always, please ensure you download only from a trusted source.
The original advisory for this exploit was posted to BugTraq on Feb 03 2002 and can be found at the following URL :
http://www.uuuppz.com/research/adv-001-mirc.htm
-----