----- Original Message ----- From: Trax <traxsterat_private> To: opers-xnet <opersat_private> Cc: net-com-xnet <net-comat_private> Sent: Sunday, April 22, 2001 1:40 PM Subject: [net-com] Bug in Mirc v5.82 > There is a bug in mirc v5.82 that allows remote control of clients via > /quote and /ctcp (not the ctcp *:*:*:* code tho), this is different, it's > the mirc coder's fault. > > Simple solution: > Downgrade mirc to v5.81 till a fix/new mirc comes out. > > Other Solution: > Put these in your remotes as they are printed here: > > ctcp 1:finger:haltdef > ctcp 1:userinfo:haltdef > ctcp 1:clientinfo:haltdef > ctcp 1:ping:haltdef > ctcp 1:time:haltdef > ctcp 1:sound:haltdef > ctcp 1:msg:haltdef > ctcp 1:/msg:haltdef > > > From my point of view, this *may* screw up your scripts, so the downgrade is > the easier option. > > This hole in mirc enable's people to remotely control people using mirc > v5.82 using /quote and /ctcp. This morning on another network, someone did > it to an ircop and globaled, if they wanted to they could have > killed/akilled people. > > So please either ditch Mirc v5.82 or insert the above code. > > Laters > Trax. > > >
This archive was generated by hypermail 2b30 : Sun Apr 22 2001 - 14:27:59 PDT