CVE-2003-1336

Mirc < 6.1 - Memory Corruption

Title source: rule

Description

Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16530

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by blasty · cremotewindows

https://www.exploit-db.com/exploits/112

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/mirc_irc_url.rb

View Code ZIP pw:eip

References (6)

[Patch] http://archives.neohapsis.com/archives/ntbugtraq/2003-q4/0060.html

[Patch, Vendor Advisory] http://secunia.com/advisories/9996

[Patch] http://www.securiteam.com/windowsntfocus/6M00B0U8KE.html

[Exploit, Patch] http://www.securityfocus.com/bid/8819

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/13405

[Third Party Advisory, VDB Entry] http://www.osvdb.org/2665

Scores

EPSS 0.7658

EPSS Percentile 99.0%

Details

CWE

CWE-119

Status published

Products (1)

mirc/mirc < 6.1

Published Dec 31, 2003

Tracked Since Feb 18, 2026