Search criteria
27 vulnerabilities found for mirc by khaled_mardam-bey
CVE-2003-1512 (GCVE-0-2003-1512)
Vulnerability from cvelistv5 – Published: 2007-10-25 19:00 – Updated: 2024-09-17 01:06
VLAI?
Summary
Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:28:03.701Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "8818",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/8818"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2007-10-25T19:00:00Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "8818",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/8818"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2003-1512",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "8818",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/8818"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2003-1512",
"datePublished": "2007-10-25T19:00:00Z",
"dateReserved": "2007-10-25T00:00:00Z",
"dateUpdated": "2024-09-17T01:06:49.852Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-0489 (GCVE-0-2006-0489)
Vulnerability from cvelistv5 – Published: 2006-02-01 02:00 – Updated: 2024-08-07 16:34 Disputed
VLAI?
Summary
Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated "as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC." It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T16:34:14.851Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"name": "20060201 Re: Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"name": "20060124 Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"name": "383",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/383"
},
{
"name": "22942",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/22942"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-01-24T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-19T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"name": "20060201 Re: Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"name": "20060124 Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"name": "383",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/383"
},
{
"name": "22942",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/22942"
}
],
"tags": [
"disputed"
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-0489",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** DISPUTED ** Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751",
"refsource": "MISC",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"name": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html",
"refsource": "MISC",
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"name": "20060201 Re: Buffer Overflow /Font on mIRC",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"name": "20060124 Buffer Overflow /Font on mIRC",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"name": "383",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/383"
},
{
"name": "22942",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/22942"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-0489",
"datePublished": "2006-02-01T02:00:00",
"dateReserved": "2006-01-31T00:00:00",
"dateUpdated": "2024-08-07T16:34:14.851Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-4681 (GCVE-0-2005-4681)
Vulnerability from cvelistv5 – Published: 2006-02-01 02:00 – Updated: 2024-08-07 23:53 Disputed
VLAI?
Summary
Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying "as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC." It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T23:53:28.953Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"name": "24116",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24116"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"name": "285",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/285"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"name": "20051220 mIRC buffer overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-12-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2006-04-04T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"name": "24116",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24116"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"name": "285",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/285"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"name": "20051220 mIRC buffer overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
}
],
"tags": [
"disputed"
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-4681",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** DISPUTED ** Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129",
"refsource": "MISC",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"name": "24116",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24116"
},
{
"name": "http://www.shellsec.net/leer_advisory.php?id=9",
"refsource": "MISC",
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"name": "285",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/285"
},
{
"name": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c",
"refsource": "MISC",
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"name": "20051220 mIRC buffer overflow",
"refsource": "BUGTRAQ",
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-4681",
"datePublished": "2006-02-01T02:00:00",
"dateReserved": "2006-01-31T00:00:00",
"dateUpdated": "2024-08-07T23:53:28.953Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-0425 (GCVE-0-2002-0425)
Vulnerability from cvelistv5 – Published: 2003-04-02 05:00 – Updated: 2024-08-08 02:49
VLAI?
Summary
mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a "100 testing" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:49:28.512Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20020306 mIRC DCC Server Security Flaw",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"name": "5301",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/5301"
},
{
"name": "4247",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/4247"
},
{
"name": "mirc-dcc-reveal-info(8393)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "http://www.iss.net/security_center/static/8393.php"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-03-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a \"100 testing\" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2002-06-15T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20020306 mIRC DCC Server Security Flaw",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"name": "5301",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/5301"
},
{
"name": "4247",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/4247"
},
{
"name": "mirc-dcc-reveal-info(8393)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "http://www.iss.net/security_center/static/8393.php"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-0425",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a \"100 testing\" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20020306 mIRC DCC Server Security Flaw",
"refsource": "BUGTRAQ",
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"name": "5301",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/5301"
},
{
"name": "4247",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/4247"
},
{
"name": "mirc-dcc-reveal-info(8393)",
"refsource": "XF",
"url": "http://www.iss.net/security_center/static/8393.php"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-0425",
"datePublished": "2003-04-02T05:00:00",
"dateReserved": "2002-06-07T00:00:00",
"dateUpdated": "2024-08-08T02:49:28.512Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-1456 (GCVE-0-2002-1456)
Vulnerability from cvelistv5 – Published: 2003-03-18 05:00 – Updated: 2024-08-08 03:26
VLAI?
Summary
Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T03:26:28.719Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"name": "5576",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/5576"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_VULNWATCH",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"name": "mirc-asctime-bo(9970)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_NTBUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-08-27T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"name": "5576",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/5576"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_VULNWATCH"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"name": "mirc-asctime-bo(9970)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_NTBUGTRAQ"
],
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-1456",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.mirc.co.uk/whatsnew.txt",
"refsource": "MISC",
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"name": "5576",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/5576"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"refsource": "VULNWATCH",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"name": "mirc-asctime-bo(9970)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"refsource": "NTBUGTRAQ",
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-1456",
"datePublished": "2003-03-18T05:00:00",
"dateReserved": "2003-02-05T00:00:00",
"dateUpdated": "2024-08-08T03:26:28.719Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-0231 (GCVE-0-2002-0231)
Vulnerability from cvelistv5 – Published: 2002-05-03 04:00 – Updated: 2024-08-08 02:42
VLAI?
Summary
Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:42:28.515Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "4027",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/4027"
},
{
"name": "20020203 Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"name": "mirc-nickname-bo(8083)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"name": "20020204 Re: Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://online.securityfocus.com/archive/1/254105"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-02-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "4027",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/4027"
},
{
"name": "20020203 Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"name": "mirc-nickname-bo(8083)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"name": "20020204 Re: Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://online.securityfocus.com/archive/1/254105"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-0231",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "4027",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/4027"
},
{
"name": "20020203 Buffer overflow in mIRC allowing arbitary code to be executed.",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"name": "mirc-nickname-bo(8083)",
"refsource": "XF",
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"name": "http://www.uuuppz.com/research/adv-001-mirc.htm",
"refsource": "MISC",
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"name": "20020204 Re: Buffer overflow in mIRC allowing arbitary code to be executed.",
"refsource": "BUGTRAQ",
"url": "http://online.securityfocus.com/archive/1/254105"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-0231",
"datePublished": "2002-05-03T04:00:00",
"dateReserved": "2002-05-01T00:00:00",
"dateUpdated": "2024-08-08T02:42:28.515Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2001-0944 (GCVE-0-2001-0944)
Vulnerability from cvelistv5 – Published: 2002-02-02 05:00 – Updated: 2024-08-08 04:37
VLAI?
Summary
DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T04:37:07.091Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20011202 mIRC bug?",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2001-12-02T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "DDE in mIRC allows local users to launch applications under another user\u0027s account via a DDE message that executes a command, which may be executed by the other user\u0027s process."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20011202 mIRC bug?",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2001-0944",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "DDE in mIRC allows local users to launch applications under another user\u0027s account via a DDE message that executes a command, which may be executed by the other user\u0027s process."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20011202 mIRC bug?",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2001-0944",
"datePublished": "2002-02-02T05:00:00",
"dateReserved": "2002-01-31T00:00:00",
"dateUpdated": "2024-08-08T04:37:07.091Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2001-0315 (GCVE-0-2001-0315)
Vulnerability from cvelistv5 – Published: 2001-04-04 04:00 – Updated: 2024-08-08 04:14
VLAI?
Summary
The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T04:14:07.405Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20010125 mIRC allows password protection to be bypassed",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"name": "mirc-bypass-password(6013)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2001-01-25T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-18T21:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20010125 mIRC allows password protection to be bypassed",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"name": "mirc-bypass-password(6013)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2001-0315",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20010125 mIRC allows password protection to be bypassed",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"name": "mirc-bypass-password(6013)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2001-0315",
"datePublished": "2001-04-04T04:00:00",
"dateReserved": "2001-04-04T00:00:00",
"dateUpdated": "2024-08-08T04:14:07.405Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-1999-0399 (GCVE-0-1999-0399)
Vulnerability from cvelistv5 – Published: 2000-02-04 05:00 – Updated: 2024-08-01 16:34
VLAI?
Summary
The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-01T16:34:52.118Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The DCC server command in the Mirc 5.5 client doesn\u0027t filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-08-17T07:27:42",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-1999-0399",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The DCC server command in the Mirc 5.5 client doesn\u0027t filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399",
"refsource": "MISC",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-1999-0399",
"datePublished": "2000-02-04T05:00:00",
"dateReserved": "1999-06-07T00:00:00",
"dateUpdated": "2024-08-01T16:34:52.118Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2003-1512 (GCVE-0-2003-1512)
Vulnerability from nvd – Published: 2007-10-25 19:00 – Updated: 2024-09-17 01:06
VLAI?
Summary
Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:28:03.701Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "8818",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/8818"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2007-10-25T19:00:00Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "8818",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/8818"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2003-1512",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "8818",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/8818"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2003-1512",
"datePublished": "2007-10-25T19:00:00Z",
"dateReserved": "2007-10-25T00:00:00Z",
"dateUpdated": "2024-09-17T01:06:49.852Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-0489 (GCVE-0-2006-0489)
Vulnerability from nvd – Published: 2006-02-01 02:00 – Updated: 2024-08-07 16:34 Disputed
VLAI?
Summary
Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated "as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC." It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T16:34:14.851Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"name": "20060201 Re: Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"name": "20060124 Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"name": "383",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/383"
},
{
"name": "22942",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/22942"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-01-24T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-19T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"name": "20060201 Re: Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"name": "20060124 Buffer Overflow /Font on mIRC",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"name": "383",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/383"
},
{
"name": "22942",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/22942"
}
],
"tags": [
"disputed"
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-0489",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** DISPUTED ** Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751",
"refsource": "MISC",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"name": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html",
"refsource": "MISC",
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"name": "20060201 Re: Buffer Overflow /Font on mIRC",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"name": "20060124 Buffer Overflow /Font on mIRC",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"name": "383",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/383"
},
{
"name": "22942",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/22942"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-0489",
"datePublished": "2006-02-01T02:00:00",
"dateReserved": "2006-01-31T00:00:00",
"dateUpdated": "2024-08-07T16:34:14.851Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-4681 (GCVE-0-2005-4681)
Vulnerability from nvd – Published: 2006-02-01 02:00 – Updated: 2024-08-07 23:53 Disputed
VLAI?
Summary
Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying "as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC." It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T23:53:28.953Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"name": "24116",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24116"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"name": "285",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/285"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"name": "20051220 mIRC buffer overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-12-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2006-04-04T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"name": "24116",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24116"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"name": "285",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/285"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"name": "20051220 mIRC buffer overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
}
],
"tags": [
"disputed"
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-4681",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** DISPUTED ** Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129",
"refsource": "MISC",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"name": "24116",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24116"
},
{
"name": "http://www.shellsec.net/leer_advisory.php?id=9",
"refsource": "MISC",
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"name": "285",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/285"
},
{
"name": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c",
"refsource": "MISC",
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"name": "20051220 mIRC buffer overflow",
"refsource": "BUGTRAQ",
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-4681",
"datePublished": "2006-02-01T02:00:00",
"dateReserved": "2006-01-31T00:00:00",
"dateUpdated": "2024-08-07T23:53:28.953Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-0425 (GCVE-0-2002-0425)
Vulnerability from nvd – Published: 2003-04-02 05:00 – Updated: 2024-08-08 02:49
VLAI?
Summary
mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a "100 testing" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:49:28.512Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20020306 mIRC DCC Server Security Flaw",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"name": "5301",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/5301"
},
{
"name": "4247",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/4247"
},
{
"name": "mirc-dcc-reveal-info(8393)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "http://www.iss.net/security_center/static/8393.php"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-03-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a \"100 testing\" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2002-06-15T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20020306 mIRC DCC Server Security Flaw",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"name": "5301",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/5301"
},
{
"name": "4247",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/4247"
},
{
"name": "mirc-dcc-reveal-info(8393)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "http://www.iss.net/security_center/static/8393.php"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-0425",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a \"100 testing\" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20020306 mIRC DCC Server Security Flaw",
"refsource": "BUGTRAQ",
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"name": "5301",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/5301"
},
{
"name": "4247",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/4247"
},
{
"name": "mirc-dcc-reveal-info(8393)",
"refsource": "XF",
"url": "http://www.iss.net/security_center/static/8393.php"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-0425",
"datePublished": "2003-04-02T05:00:00",
"dateReserved": "2002-06-07T00:00:00",
"dateUpdated": "2024-08-08T02:49:28.512Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-1456 (GCVE-0-2002-1456)
Vulnerability from nvd – Published: 2003-03-18 05:00 – Updated: 2024-08-08 03:26
VLAI?
Summary
Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T03:26:28.719Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"name": "5576",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/5576"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_VULNWATCH",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"name": "mirc-asctime-bo(9970)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_NTBUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-08-27T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"name": "5576",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/5576"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_VULNWATCH"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"name": "mirc-asctime-bo(9970)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"tags": [
"mailing-list",
"x_refsource_NTBUGTRAQ"
],
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-1456",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.mirc.co.uk/whatsnew.txt",
"refsource": "MISC",
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"name": "5576",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/5576"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"refsource": "VULNWATCH",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"name": "mirc-asctime-bo(9970)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"name": "20020827 uuuppz.com - Advisory 002 - mIRC $asctime overflow",
"refsource": "NTBUGTRAQ",
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-1456",
"datePublished": "2003-03-18T05:00:00",
"dateReserved": "2003-02-05T00:00:00",
"dateUpdated": "2024-08-08T03:26:28.719Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-0231 (GCVE-0-2002-0231)
Vulnerability from nvd – Published: 2002-05-03 04:00 – Updated: 2024-08-08 02:42
VLAI?
Summary
Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:42:28.515Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "4027",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/4027"
},
{
"name": "20020203 Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"name": "mirc-nickname-bo(8083)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"name": "20020204 Re: Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://online.securityfocus.com/archive/1/254105"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-02-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "4027",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/4027"
},
{
"name": "20020203 Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"name": "mirc-nickname-bo(8083)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"name": "20020204 Re: Buffer overflow in mIRC allowing arbitary code to be executed.",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://online.securityfocus.com/archive/1/254105"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-0231",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "4027",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/4027"
},
{
"name": "20020203 Buffer overflow in mIRC allowing arbitary code to be executed.",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"name": "mirc-nickname-bo(8083)",
"refsource": "XF",
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"name": "http://www.uuuppz.com/research/adv-001-mirc.htm",
"refsource": "MISC",
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"name": "20020204 Re: Buffer overflow in mIRC allowing arbitary code to be executed.",
"refsource": "BUGTRAQ",
"url": "http://online.securityfocus.com/archive/1/254105"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-0231",
"datePublished": "2002-05-03T04:00:00",
"dateReserved": "2002-05-01T00:00:00",
"dateUpdated": "2024-08-08T02:42:28.515Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2001-0944 (GCVE-0-2001-0944)
Vulnerability from nvd – Published: 2002-02-02 05:00 – Updated: 2024-08-08 04:37
VLAI?
Summary
DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T04:37:07.091Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20011202 mIRC bug?",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2001-12-02T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "DDE in mIRC allows local users to launch applications under another user\u0027s account via a DDE message that executes a command, which may be executed by the other user\u0027s process."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20011202 mIRC bug?",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2001-0944",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "DDE in mIRC allows local users to launch applications under another user\u0027s account via a DDE message that executes a command, which may be executed by the other user\u0027s process."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20011202 mIRC bug?",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2001-0944",
"datePublished": "2002-02-02T05:00:00",
"dateReserved": "2002-01-31T00:00:00",
"dateUpdated": "2024-08-08T04:37:07.091Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2001-0315 (GCVE-0-2001-0315)
Vulnerability from nvd – Published: 2001-04-04 04:00 – Updated: 2024-08-08 04:14
VLAI?
Summary
The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T04:14:07.405Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20010125 mIRC allows password protection to be bypassed",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"name": "mirc-bypass-password(6013)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2001-01-25T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-18T21:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20010125 mIRC allows password protection to be bypassed",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"name": "mirc-bypass-password(6013)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2001-0315",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20010125 mIRC allows password protection to be bypassed",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"name": "mirc-bypass-password(6013)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2001-0315",
"datePublished": "2001-04-04T04:00:00",
"dateReserved": "2001-04-04T00:00:00",
"dateUpdated": "2024-08-08T04:14:07.405Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-1999-0399 (GCVE-0-1999-0399)
Vulnerability from nvd – Published: 2000-02-04 05:00 – Updated: 2024-08-01 16:34
VLAI?
Summary
The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-01T16:34:52.118Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The DCC server command in the Mirc 5.5 client doesn\u0027t filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-08-17T07:27:42",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-1999-0399",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The DCC server command in the Mirc 5.5 client doesn\u0027t filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399",
"refsource": "MISC",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-1999-0399",
"datePublished": "2000-02-04T05:00:00",
"dateReserved": "1999-06-07T00:00:00",
"dateUpdated": "2024-08-01T16:34:52.118Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
FKIE_CVE-2006-0489
Vulnerability from fkie_nvd - Published: 2006-02-01 02:02 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated "as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC." It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 6.16 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.16:*:*:*:*:*:*:*",
"matchCriteriaId": "5C8EC0D6-667F-4232-A6C4-EDE53968B935",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [
{
"sourceIdentifier": "cve@mitre.org",
"tags": [
"disputed"
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk"
}
],
"id": "CVE-2006-0489",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": true,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2006-02-01T02:02:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://securityreason.com/securityalert/383"
},
{
"source": "cve@mitre.org",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/22942"
},
{
"source": "cve@mitre.org",
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securityreason.com/securityalert/383"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Board=bugreports\u0026Number=118751"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/22942"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/423192/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/423758/100/0/threaded"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2005-4681
Vulnerability from fkie_nvd - Published: 2005-12-31 05:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying "as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC." It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 5.91 | |
| khaled_mardam-bey | mirc | 6.03 | |
| khaled_mardam-bey | mirc | 6.12 | |
| khaled_mardam-bey | mirc | 6.16 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.91:*:*:*:*:*:*:*",
"matchCriteriaId": "0A6B7CAF-1931-42BA-AB9B-99B23054CE4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.03:*:*:*:*:*:*:*",
"matchCriteriaId": "D821E7E3-A7CC-4C5D-8894-CECD478D742E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.12:*:*:*:*:*:*:*",
"matchCriteriaId": "0ADEDA8F-BB1D-4678-A35B-E7F46CD03380",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.16:*:*:*:*:*:*:*",
"matchCriteriaId": "5C8EC0D6-667F-4232-A6C4-EDE53968B935",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [
{
"sourceIdentifier": "cve@mitre.org",
"tags": [
"disputed"
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 5.91, 6.03, 6.12, and 6.16 allows local users to execute arbitrary code via a long string that is entered after reaching the DCC Get Folder Dialog. NOTE: this issue has been disputed by the vendor, saying \"as far as I can tell, this is neither an exploit nor a vulnerability. The above report describes a local bug in mIRC.\" It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk"
}
],
"id": "CVE-2005-4681",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": true,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2005-12-31T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
},
{
"source": "cve@mitre.org",
"url": "http://securityreason.com/securityalert/285"
},
{
"source": "cve@mitre.org",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/24116"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit"
],
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"source": "cve@mitre.org",
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/lists/bugtraq/2005/Dec/0263.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securityreason.com/securityalert/285"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0\u0026Number=146129\u0026an=0\u0026page=0#146129"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/24116"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit"
],
"url": "http://www.packetstormsecurity.org/0512-exploits/mIRCexploitXPSP2eng.c"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.shellsec.net/leer_advisory.php?id=9"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2003-1512
Vulnerability from fkie_nvd - Published: 2003-12-31 05:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://www.securityfocus.com/bid/8818 | Exploit, Patch | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/8818 | Exploit, Patch |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 6.1 | |
| khaled_mardam-bey | mirc | 6.11 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "368F9C0C-11BF-4AAE-8106-266F95236E7D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.11:*:*:*:*:*:*:*",
"matchCriteriaId": "E474A286-8102-491B-80D8-D313009BE7E0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request."
}
],
"id": "CVE-2003-1512",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2003-12-31T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Patch"
],
"url": "http://www.securityfocus.com/bid/8818"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Patch"
],
"url": "http://www.securityfocus.com/bid/8818"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2002-1456
Vulnerability from fkie_nvd - Published: 2003-06-09 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 6.0 | |
| khaled_mardam-bey | mirc | 6.0.1 | |
| khaled_mardam-bey | mirc | 6.0.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9515213E-EB2B-4E53-8225-27B0EEB0EF55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C8573D7D-C638-4337-BA86-DBD48461CAB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "25DDB3B9-E7E7-41FF-A184-637B0480BBFC",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer en mIRC 6.0.2 y anteriores permite que atcantes remotos ejecuten c\u00f3digo arbitrario mediante un valor muy grande para $asctime"
}
],
"id": "CVE-2002-1456",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": true,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2003-06-09T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/5576"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0092.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=103046375002380\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=ntbugtraq\u0026m=103046138631893\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mirc.co.uk/whatsnew.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/5576"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9970"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2002-0425
Vulnerability from fkie_nvd - Published: 2002-08-12 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a "100 testing" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 6.0 | |
| khaled_mardam-bey | mirc | 6.0_1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9515213E-EB2B-4E53-8225-27B0EEB0EF55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:6.0_1:*:*:*:*:*:*:*",
"matchCriteriaId": "5067FBD2-2D12-4D49-B4A6-3F2DB3DF259F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a \"100 testing\" message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message."
}
],
"id": "CVE-2002-0425",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2002-08-12T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://www.iss.net/security_center/static/8393.php"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/5301"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://www.securityfocus.com/bid/4247"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://online.securityfocus.com/archive/1/260244"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.iss.net/security_center/static/8393.php"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/5301"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.securityfocus.com/bid/4247"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2002-0231
Vulnerability from fkie_nvd - Published: 2002-05-16 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 2.1a | |
| khaled_mardam-bey | mirc | 2.3a | |
| khaled_mardam-bey | mirc | 2.4 | |
| khaled_mardam-bey | mirc | 2.4a | |
| khaled_mardam-bey | mirc | 2.5a | |
| khaled_mardam-bey | mirc | 2.7a | |
| khaled_mardam-bey | mirc | 2.8c | |
| khaled_mardam-bey | mirc | 3.1 | |
| khaled_mardam-bey | mirc | 3.2 | |
| khaled_mardam-bey | mirc | 3.3 | |
| khaled_mardam-bey | mirc | 3.4 | |
| khaled_mardam-bey | mirc | 3.5 | |
| khaled_mardam-bey | mirc | 3.6 | |
| khaled_mardam-bey | mirc | 3.7 | |
| khaled_mardam-bey | mirc | 3.8 | |
| khaled_mardam-bey | mirc | 3.9 | |
| khaled_mardam-bey | mirc | 4.0 | |
| khaled_mardam-bey | mirc | 4.1 | |
| khaled_mardam-bey | mirc | 4.5 | |
| khaled_mardam-bey | mirc | 4.6 | |
| khaled_mardam-bey | mirc | 4.7 | |
| khaled_mardam-bey | mirc | 5.0 | |
| khaled_mardam-bey | mirc | 5.1 | |
| khaled_mardam-bey | mirc | 5.3 | |
| khaled_mardam-bey | mirc | 5.4 | |
| khaled_mardam-bey | mirc | 5.5 | |
| khaled_mardam-bey | mirc | 5.6 | |
| khaled_mardam-bey | mirc | 5.7 | |
| khaled_mardam-bey | mirc | 5.8 | |
| khaled_mardam-bey | mirc | 5.9 | |
| khaled_mardam-bey | mirc | 5.91 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "B791380F-A9DD-44DC-86E9-8CEEA42F93A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.3a:*:*:*:*:*:*:*",
"matchCriteriaId": "82F24CA1-9624-48D3-8FA7-0D7F5100EF69",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "63899B1A-A650-4115-9744-479B9ED3CBE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.4a:*:*:*:*:*:*:*",
"matchCriteriaId": "231E8508-49C0-44BB-8B85-2AFF3598909A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.5a:*:*:*:*:*:*:*",
"matchCriteriaId": "B3547A5E-8DF9-4AD0-8805-1725568F6565",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.7a:*:*:*:*:*:*:*",
"matchCriteriaId": "00C1E569-3215-4767-B6ED-CAC4AF71536E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:2.8c:*:*:*:*:*:*:*",
"matchCriteriaId": "4D183BBC-FE4A-4750-AD02-6654C0405BCC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1AC2D1CE-E20A-40AF-B41B-7E7D69F9F58E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "04F0F94A-5E26-4DA4-838E-11300E8DF252",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "4040CDC6-4761-43AA-8C4F-85001095EF4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C66AE831-84C1-4951-A677-D1DFE21EB11C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "0CD7554B-97C8-4F1C-819C-EC7429D61ACD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "C15B84CF-EAD3-4BDB-8216-346364D0B575",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "9A888B70-F2D4-4A39-A8FB-B8046FD2C217",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.8:*:*:*:*:*:*:*",
"matchCriteriaId": "545750EA-51DB-4840-A1E1-51197632DAF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:3.9:*:*:*:*:*:*:*",
"matchCriteriaId": "4A31F9FA-AC9B-41F0-9186-87FFB0E29048",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A1BAA3B1-902E-4E6E-8B60-08471A2B401B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2A47C119-F242-419A-BAFD-59AA7009D2AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:4.5:*:*:*:*:*:*:*",
"matchCriteriaId": "05B9C047-8013-425A-8C0C-14EDC8554E09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "58013A90-EE33-41B8-8130-3D925BEC8D2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "756A6931-75FE-45CD-8F19-A618545D6BEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C8660F02-2382-4995-B024-D466259BD9FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C9468295-7E11-461D-A865-5557206EA230",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A517AB64-AC69-4ABD-9CB9-9BF840CABECA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.4:*:*:*:*:*:*:*",
"matchCriteriaId": "7E77A2D5-F04B-45ED-A1BE-7FF65BE43EAD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "223779ED-745D-493C-8FD5-1ADE46163B36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "57613CFE-3B73-463D-9731-0B164F500F5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.7:*:*:*:*:*:*:*",
"matchCriteriaId": "E0777EE5-412D-4E61-A5F9-D56FBC803697",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.8:*:*:*:*:*:*:*",
"matchCriteriaId": "A21801B2-B8AD-425C-8904-6F2020B784B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.9:*:*:*:*:*:*:*",
"matchCriteriaId": "749F7AA3-A65D-41EC-8A72-8556DEC1D527",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.91:*:*:*:*:*:*:*",
"matchCriteriaId": "0A6B7CAF-1931-42BA-AB9B-99B23054CE4C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname."
},
{
"lang": "es",
"value": "Desbordamiento de buffer en mIRC 5.91 y anteriores permite a un servidor remoto ejecutar c\u00f3digo arbitrario en el cliente mediante un apodo (nickname) largo."
}
],
"id": "CVE-2002-0231",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": true,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2002-05-16T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://online.securityfocus.com/archive/1/254105"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/4027"
},
{
"source": "cve@mitre.org",
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=101286747013955\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://online.securityfocus.com/archive/1/254105"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.iss.net/security_center/static/8083.php"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/4027"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.uuuppz.com/research/adv-001-mirc.htm"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2001-0944
Vulnerability from fkie_nvd - Published: 2001-12-02 05:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BAE72308-D533-453D-A219-288566283BFA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "DDE in mIRC allows local users to launch applications under another user\u0027s account via a DDE message that executes a command, which may be executed by the other user\u0027s process."
}
],
"id": "CVE-2001-0944",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2001-12-02T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=100734173831990\u0026w=2"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2001-0315
Vulnerability from fkie_nvd - Published: 2001-06-02 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EBF0340E-86E7-473F-BB34-711F7BE99DE8",
"versionEndIncluding": "5.7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key."
}
],
"id": "CVE-2001-0315",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2001-06-02T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=98053777917287\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6013"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-1999-0399
Vulnerability from fkie_nvd - Published: 1999-01-01 05:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| khaled_mardam-bey | mirc | 5.5 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:khaled_mardam-bey:mirc:5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "223779ED-745D-493C-8FD5-1ADE46163B36",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The DCC server command in the Mirc 5.5 client doesn\u0027t filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands."
}
],
"id": "CVE-1999-0399",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": true,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "1999-01-01T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}