CVE-2003-1512
published 2003-12-31CVE-2003-1512: Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.
PriorityP420medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
2.43%
82.2th percentile
Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| khaled_mardam-bey | mirc | — | — |
| khaled_mardam-bey | mirc | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
mIRC 6.1 - 'DCC SEND' Buffer Overflow (1)
exploitdb·2003-10-13
CVE-2003-1512 mIRC 6.1 - 'DCC SEND' Buffer Overflow (1)
mIRC 6.1 - 'DCC SEND' Buffer Overflow (1)
---
source: https://www.securityfocus.com/bid/8818/info
A vulnerability has been reported to exist in the mIRC client that may allow a remote attacker to crash a vulnerable mIRC client. The condition is most likely present due to insufficient boundary checking performed on 'DCC SEND' requests.
It has been reported that when received, a malicious 'DDC SEND' request can trigger a fatal error and cause an affected mIRC client to crash.
#!/usr/bin/perl -w
use IO::Socket;
# get irc server to connect to, and nick to exploit.
print "Enter Serv: "; chomp($serv=);
print "Enter Nick: "; chomp($nick=);
#setup connection
$ocket = IO::Socket::INET->new(
PeerAddr=>"$serv",
PeerPort=>'6667'
) || die "could not connect to $serv: $!";
#$| = 1;
#$ocket->autof
Exploit-DB
mIRC 6.1 - 'DCC SEND' Buffer Overflow (2)
exploitdb·2003-10-13
CVE-2003-1512 mIRC 6.1 - 'DCC SEND' Buffer Overflow (2)
mIRC 6.1 - 'DCC SEND' Buffer Overflow (2)
---
source: https://www.securityfocus.com/bid/8818/info
A vulnerability has been reported to exist in the mIRC client that may allow a remote attacker to crash a vulnerable mIRC client. The condition is most likely present due to insufficient boundary checking performed on 'DCC SEND' requests.
It has been reported that when received, a malicious 'DDC SEND' request can trigger a fatal error and cause an affected mIRC client to crash.
#!/usr/bin/perl
# mIRC v.6.01-6.11 DCC bug crash script
# usage:
# /crashmirc crashes every user with vulnerable mIRC client on
# /crashmirc crashes with vulnerable mIRC client
#
# v0.4: fixed bug with dcc send command, thx to DarkAngel
use Irssi;
use strict;
use vars qw($VERSION %IRSSI);
$VERSION = "0.4";
%IRS
No writeups or analysis indexed.
2003-12-31
Published