The proposed "fix" will not accomplish anything if the "bug" is actually
internal to mIRC.
If I was to speculate as to what is really going on, based on what little
information this email contains, I would suggest that the client that was
'controlable' had a trojan script installed. I've been a long time operator
on #mIRC on Efnet, and this seems to be the case more and more frequently.
Ultimately, you just can't trust scripts that other people hand you without
looking at the code yourself.. this is just common sense.
I surely hope that this isn't some type of attention-grabbing intentional
false alert. It appears that the reporter of this bug hasn't contacted
Khaled (the author of mIRC), or posted a bug report on mIRC's online forums.
This bug report is _FALSE_, please deal with it accordingly.
-chris
-----Original Message-----
From: Bugtraq List [mailto:[EMAIL PROTECTED]]On Behalf Of Chris
King
Sent: Sunday, April 22, 2001 8:27 AM
To: [EMAIL PROTECTED]
Subject: Fw: [net-com] Bug in Mirc v5.82
----- Original Message -----
From: Trax <[EMAIL PROTECTED]>
To: opers-xnet <[EMAIL PROTECTED]>
Cc: net-com-xnet <[EMAIL PROTECTED]>
Sent: Sunday, April 22, 2001 1:40 PM
Subject: [net-com] Bug in Mirc v5.82
> There is a bug in mirc v5.82 that allows remote control of clients via
> /quote and /ctcp (not the ctcp *:*:*:* code tho), this is different, it's
> the mirc coder's fault.
>
> Simple solution:
> Downgrade mirc to v5.81 till a fix/new mirc comes out.
>
> Other Solution:
> Put these in your remotes as they are printed here:
>
> ctcp 1:finger:haltdef
> ctcp 1:userinfo:haltdef
> ctcp 1:clientinfo:haltdef
> ctcp 1:ping:haltdef
> ctcp 1:time:haltdef
> ctcp 1:sound:haltdef
> ctcp 1:msg:haltdef
> ctcp 1:/msg:haltdef
>
>
> From my point of view, this *may* screw up your scripts, so the downgrade
is
> the easier option.
>
> This hole in mirc enable's people to remotely control people using mirc
> v5.82 using /quote and /ctcp. This morning on another network, someone
did
> it to an ircop and globaled, if they wanted to they could have
> killed/akilled people.
>
> So please either ditch Mirc v5.82 or insert the above code.
>
> Laters
> Trax.
>
>
>
