----- Original Message -----
From: Trax <[EMAIL PROTECTED]>
To: opers-xnet <[EMAIL PROTECTED]>
Cc: net-com-xnet <[EMAIL PROTECTED]>
Sent: Sunday, April 22, 2001 1:40 PM
Subject: [net-com] Bug in Mirc v5.82
> There is a bug in mirc v5.82 that allows remote control of clients via
> /quote and /ctcp (not the ctcp *:*:*:* code tho), this is different, it's
> the mirc coder's fault.
>
> Simple solution:
> Downgrade mirc to v5.81 till a fix/new mirc comes out.
>
> Other Solution:
> Put these in your remotes as they are printed here:
>
> ctcp 1:finger:haltdef
> ctcp 1:userinfo:haltdef
> ctcp 1:clientinfo:haltdef
> ctcp 1:ping:haltdef
> ctcp 1:time:haltdef
> ctcp 1:sound:haltdef
> ctcp 1:msg:haltdef
> ctcp 1:/msg:haltdef
>
>
> From my point of view, this *may* screw up your scripts, so the downgrade
is
> the easier option.
>
> This hole in mirc enable's people to remotely control people using mirc
> v5.82 using /quote and /ctcp. This morning on another network, someone
did
> it to an ircop and globaled, if they wanted to they could have
> killed/akilled people.
>
> So please either ditch Mirc v5.82 or insert the above code.
>
> Laters
> Trax.
>
>
>
