CVE-2003-1512

mIRC 6.1 and 6.11 - Denial of Service via Long DCC SEND Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2003-1512. PoCs published by DarkAngel, Takara Takaishi.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in mIRC clients (versions 6.01-6.11) by sending a maliciously crafted DCC SEND request with an overly long filename, causing the client to crash. The PoC is designed to be used within the Irssi IRC client to trigger the vulnerability.

Description

Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.

Exploits (2)

exploitdb WORKING POC VERIFIED
by DarkAngel · perldoswindows
https://www.exploit-db.com/exploits/23241

This exploit targets a buffer overflow vulnerability in mIRC clients (versions 6.01-6.11) by sending a maliciously crafted DCC SEND request with an overly long filename, causing the client to crash. The PoC is designed to be used within the Irssi IRC client to trigger the vulnerability.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: mIRC 6.01-6.11
No auth needed
Prerequisites: Access to an IRC network where the target mIRC client is connected · Irssi IRC client to execute the exploit
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Takara Takaishi · perldoswindows
https://www.exploit-db.com/exploits/23240

This exploit targets a vulnerability in mIRC (CVE-2003-1512) by sending a malformed 'DCC SEND' request with an excessively long string, causing the client to crash. The script automates the connection to an IRC server and delivers the payload to a specified target nick.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: mIRC (version not specified, likely older versions)
No auth needed
Prerequisites: IRC server address · Target nickname
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/8818

Scores

EPSS 0.0243
EPSS Percentile 82.2%

Details

CWE
CWE-119
Status published
Products (2)
khaled_mardam-bey/mirc 6.1
khaled_mardam-bey/mirc 6.11
Published Dec 31, 2003
Tracked Since Feb 18, 2026