Re: Old IRC Client bug Re-Applied

knarphLINUX.SAVANT-CORP.COM

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: System Administrator: "Re: Old IRC Client bug Re-Applied"
• Previous message: Casper Dik: "Re: [Fwd: NOTE: Solaris 7 gotcha for some ultras]"
• In reply to: rewtmidsouth.rr.com: "Old IRC Client bug Re-Applied"
• Next in thread: System Administrator: "Re: Old IRC Client bug Re-Applied"

Actually in the newest version of pIRCh it directs all dcc downloads to a
directory off of the main directory named 'downloads'. However on all but
the latest this information is correct.

-Knarph

On Thu, 12 Nov 1998, rewtmidsouth.rr.com wrote:

> If this has already been announced, well, screw me.
>
> Problem:
> The IRC (Internet Relay Chat) Client, pIRCh automatically assigns
> your main pirch directory to where DCC downloads are sent.
>
> Exploit:
> You can replace someone's script file with a malicious one,
> therefore recieving control over an ignorant irc tenant. This can be
> done by sending a replacement file via DCC to the user. Most
> people could tell the user that it was something cool, and they
> would accept it.
>
> Fix:
> Simply goto Tools.. then Preferences. Flip to the DCC tab and
> change your default DCC recieve directory to something that is not
> the main pIRCh directory.
>
> Tested On:
> pIRCh32 0.92
> If there's a new version out that fixes it, well crap, I'm sorry for
> taking up your time.
>
> Cheers,
> REwT <rewtmidsouth.rr.com>
> PaKT-TeCH Sekurity | REwT Technologies
>

• Next message: System Administrator: "Re: Old IRC Client bug Re-Applied"
• Previous message: Casper Dik: "Re: [Fwd: NOTE: Solaris 7 gotcha for some ultras]"
• In reply to: rewtmidsouth.rr.com: "Old IRC Client bug Re-Applied"
• Next in thread: System Administrator: "Re: Old IRC Client bug Re-Applied"