vendor:
Mirc
by:
milw0rm.com
N/A
CVSS
HIGH
Remote Buffer Overflow
Buffer Overflow
CWE
Product Name: Mirc
Affected Version From: 6.34
Affected Version To: 6.34
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2008
Mirc 6.34 Remote Buffer Overflow
This poc allows an attacker to own the first two bytes of the EDI and EDX registers. To become remote, the attacker can add a simple document.location.href=irc://server.com/... in some HTML page.
Mitigation:
Unknown