CVE-2008-4748

KVirc 3.4.0 - Format String Vulnerability via IRC URI Handler

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4748. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit leverages a format string vulnerability in KVIrc v3.4.0 Virgo by crafting a malicious IRC URI with format string specifiers. The PoC uses JavaScript to prompt the user and redirect to the exploit URI, triggering the vulnerability when processed by the vulnerable IRC client.

Description

Format string vulnerability in the URI handler in KVirc 3.4.0, when set as the default application for processing IRC URIs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in the irc:// URI.

Exploits (1)

exploitdb WORKING POC VERIFIED

by LiquidWorm · htmldoswindows

https://www.exploit-db.com/exploits/6832

View Code ZIP pw:eip

This exploit leverages a format string vulnerability in KVIrc v3.4.0 Virgo by crafting a malicious IRC URI with format string specifiers. The PoC uses JavaScript to prompt the user and redirect to the exploit URI, triggering the vulnerability when processed by the vulnerable IRC client.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: KVIrc v3.4.0 Virgo

No auth needed

Prerequisites: Victim must be using KVIrc v3.4.0 Virgo · Victim must click 'OK' on the JavaScript prompt · Victim must have JavaScript enabled in their browser

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →