CVE-2007-3612

Visual IRC 2.0 - Remote Code Execution via Long JOIN Response

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3612. PoCs published by h07.

AI-analyzed exploit summary This exploit targets a remote SEH overwrite vulnerability in ViRC 2.0 by sending a malformed JOIN response to trigger arbitrary code execution (calc.exe). It acts as a proxy between the client and the real IRC server to inject the payload.

Description

Stack-based buffer overflow in Visual IRC (ViRC) 2.0 allows remote IRC servers to execute arbitrary code via a long response to a JOIN command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by h07 · pythonremotewindows

https://www.exploit-db.com/exploits/4152

View Code ZIP pw:eip

This exploit targets a remote SEH overwrite vulnerability in ViRC 2.0 by sending a malformed JOIN response to trigger arbitrary code execution (calc.exe). It acts as a proxy between the client and the real IRC server to inject the payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Visual IRC 2.0 / 2k SP4 Polish

No auth needed

Prerequisites: Network access to the target IRC client · Ability to intercept/modify IRC traffic

MITRE ATT&CK