Mirc Security Vulnerabilities and Issues — Mirc CVE List

Lucene search

MircMirc

7 matches found

CVE•added 2019/02/18 3:29 p.m.•110 views

CVE-2019-6453

mIRC before 7.55 allows remote command execution by using argument injection through custom URI protocol handlers. The attacker can specify an irc:// URI that loads an arbitrary .ini file from a UNC share pathname. Exploitation depends on browser-specific URI handling (Chrome is not exploitable).

8.1CVSS8AI score0.85376EPSS

CVE•added 2007/09/23 11:0 p.m.•38 views

CVE-2003-1336

Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL.

9.3CVSS7.9AI score0.67579EPSS

CVE•added 2008/10/06 7:56 p.m.•37 views

CVE-2008-4449

Stack-based buffer overflow in mIRC 6.34 allows remote attackers to execute arbitrary code via a long hostname in a PRIVMSG message.

9.3CVSS7.8AI score0.80993EPSS

CVE•added 2007/10/25 7:0 p.m.•35 views

CVE-2003-1508

Buffer overflow in mIRC 6.12, when the DCC get dialog window has been minimized and the user opens the minimized window, allows remote attackers to cause a denial of service (crash) via a long filename.

4.3CVSS7.2AI score0.00761EPSS

CVE•added 2020/01/21 4:15 p.m.•30 views

CVE-2011-5282

mIRC prior to 7.22 has a message leak because chopping of outbound messages is mishandled.

5.3CVSS5.2AI score0.00237EPSS

CVE•added 2007/08/18 9:17 p.m.•28 views

CVE-2007-4402

Multiple unspecified scripts in mIRC allow user-assisted remote attackers to execute arbitrary code via the '|' (pipe) shell metacharacter in the name of the song in a .mp3 file.

6.8CVSS7.7AI score0.0285EPSS

CVE•added 2020/01/23 3:15 p.m.•27 views

CVE-2008-7314

mIRC before 6.35 allows attackers to cause a denial of service (crash) via a long nickname.

7.5CVSS7.3AI score0.00408EPSS