mIRC DCC server protocol allows remote attackers to gain sensitive information such as alternate IRC nicknames via a 100 testing message in a DCC connection request that cannot be ignored or canceled by the user, which may leak the alternate nickname in a response message.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mirc | Khaled_mardam-bey | 6.0 (including) | 6.0 (including) |
| Mirc | Khaled_mardam-bey | 6.0_1 (including) | 6.0_1 (including) |
References
- http://online.securityfocus.com/archive/1/260244
- http://www.iss.net/security_center/static/8393.php
- http://www.osvdb.org/5301
- http://www.securityfocus.com/bid/4247
- http://online.securityfocus.com/archive/1/260244
- http://www.iss.net/security_center/static/8393.php
- http://www.osvdb.org/5301
- http://www.securityfocus.com/bid/4247