CVE-2002-0231

mIRC <= 5.91 - Remote Code Execution via Long Nickname

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0231. PoCs published by James Martin.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow in mIRC by sending an excessively long nickname to overwrite stack variables, leading to arbitrary code execution. It targets specific Windows versions (9x, 2K, XP) by adjusting the magic number and offset for stack manipulation.

Description

Buffer overflow in mIRC 5.91 and earlier allows a remote server to execute arbitrary code on the client via a long nickname.

Exploits (1)

exploitdb WORKING POC VERIFIED
by James Martin · cremotewindows
https://www.exploit-db.com/exploits/21274

This exploit demonstrates a buffer overflow in mIRC by sending an excessively long nickname to overwrite stack variables, leading to arbitrary code execution. It targets specific Windows versions (9x, 2K, XP) by adjusting the magic number and offset for stack manipulation.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: mIRC 5.91
No auth needed
Prerequisites: Network access to the target mIRC client · Ability to send crafted IRC server responses
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4027
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=101286747013955&w=2
Patch, Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/8083.php
Various Sources x_refsource_misc
http://www.uuuppz.com/research/adv-001-mirc.htm
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/254105

Scores

EPSS 0.0982
EPSS Percentile 94.9%

Details

Status published
Products (31)
khaled_mardam-bey/mirc 2.1a
khaled_mardam-bey/mirc 2.3a
khaled_mardam-bey/mirc 2.4
khaled_mardam-bey/mirc 2.4a
khaled_mardam-bey/mirc 2.5a
khaled_mardam-bey/mirc 2.7a
khaled_mardam-bey/mirc 2.8c
khaled_mardam-bey/mirc 3.1
khaled_mardam-bey/mirc 3.2
khaled_mardam-bey/mirc 3.3
... and 21 more
Published May 16, 2002
Tracked Since Feb 18, 2026