Vulnerabilities (CVE)

Filtered by vendor Mirc Subscribe
Filtered by product Mirc
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-5282 1 Mirc 1 Mirc 2024-02-28 5.0 MEDIUM 5.3 MEDIUM
mIRC prior to 7.22 has a message leak because chopping of outbound messages is mishandled.
CVE-2008-7314 1 Mirc 1 Mirc 2024-02-28 5.0 MEDIUM 7.5 HIGH
mIRC before 6.35 allows attackers to cause a denial of service (crash) via a long nickname.
CVE-2019-6453 1 Mirc 1 Mirc 2024-02-28 6.8 MEDIUM 8.1 HIGH
mIRC before 7.55 allows remote command execution by using argument injection through custom URI protocol handlers. The attacker can specify an irc:// URI that loads an arbitrary .ini file from a UNC share pathname. Exploitation depends on browser-specific URI handling (Chrome is not exploitable).
CVE-2008-4449 1 Mirc 1 Mirc 2024-02-28 9.3 HIGH N/A
Stack-based buffer overflow in mIRC 6.34 allows remote attackers to execute arbitrary code via a long hostname in a PRIVMSG message.
CVE-2007-4402 1 Mirc 1 Mirc 2024-02-28 6.8 MEDIUM N/A
Multiple unspecified scripts in mIRC allow user-assisted remote attackers to execute arbitrary code via the '|' (pipe) shell metacharacter in the name of the song in a .mp3 file.
CVE-2003-1508 1 Mirc 1 Mirc 2024-02-28 4.3 MEDIUM N/A
Buffer overflow in mIRC 6.12, when the DCC get dialog window has been minimized and the user opens the minimized window, allows remote attackers to cause a denial of service (crash) via a long filename.
CVE-2003-1336 1 Mirc 1 Mirc 2024-02-28 9.3 HIGH N/A
Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL.