|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Mirc 5.5 'DCC Server' hole
Sandro Jurado (devil
BETA.COSAPIDATA.COM.PE)Tue, 26 Jan 1999 11:40:49 -0500
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Bruno Coelho: "Re: Win98 Crash?"
- Previous message: Georgi Guninski: "Javascript ecurity bug in Internet Explorer"
- In reply to: Spikeman: "Mirc 5.5 'DCC Server' hole"
- Next in thread: Liam: "Re: Mirc 5.5 'DCC Server' hole"
On 24 Jan 99, at 8:44, Spikeman wrote: > while talking with typo he gave me this mIRC bug as it says in the file # > bug description: mirc 5.5's newly introduced dcc server feature doesn't # > filter metachars(such as . and \) from sent filenames. this script fakes > the # sending of a harmless file and then puts malicious file in a wanted > # destination dir on the same harddrive (autostart dir is a good choice) > > If you have problems with the attchmnt i have the file at > http://spikeman.genocide2600.com/balu.pl As I see, this will only work if you have the mIRC DCCSERVER in ON. If not, you wont have a port 59 listening to DCCs.
- Next message: Bruno Coelho: "Re: Win98 Crash?"
- Previous message: Georgi Guninski: "Javascript ecurity bug in Internet Explorer"
- In reply to: Spikeman: "Mirc 5.5 'DCC Server' hole"
- Next in thread: Liam: "Re: Mirc 5.5 'DCC Server' hole"