mIRC IRC URI Handler Overflow

2003-10-14T05:10:23
ID OSVDB:2665
Type osvdb
Reporter Phuong Nguyen(dphuong@yahoo.com)
Modified 2003-10-14T05:10:23

Description

Vulnerability Description

mIRC contain a flaw that could allow an attacker to remotely compromise the system with a buffer overflow. If a malicious attacker sends an overly long, specially crafted hostname using the irc: URI the buffer will overflow and allow the attacker to execute arbitrary code.

Technical Description

The overflow exists in the way that mIRC handles the "irc:" URI.

Solution Description

Upgrade to version 6.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

mIRC contain a flaw that could allow an attacker to remotely compromise the system with a buffer overflow. If a malicious attacker sends an overly long, specially crafted hostname using the irc: URI the buffer will overflow and allow the attacker to execute arbitrary code.

References:

Vendor Specific Solution URL: http://www.mirc.com/get.html Secunia Advisory ID:9996 Related OSVDB ID: 2663 Related OSVDB ID: 2628 Mail List Post: http://archives.neohapsis.com/archives/ntbugtraq/2003-q4/0060.html ISS X-Force ID: 13405 Generic Informational URL: http://www.mirc.co.uk/ Generic Informational URL: http://www.securiteam.com/windowsntfocus/6M00B0U8KE.html CVE-2003-1336 Bugtraq ID: 8819