Computer Security
[EN] securityvulns.ru no-pyccku


mIRC unfiltered shell characters vulnerability
Published:04.10.2007
Source:
SecurityVulns ID:8207
Type:remote
Threat Level:
6/10
Description:Shell characters are not filtered on invoking external URL handler, making it's possible to use URLs like mailto:%xx../../../../../../../../../../../windows/system32/calc.exe".bat
Affected:MIRC : mIRC 6.3
Original documentdocumentjinc4fareijj_(at)_hotmail.com, 0day: mIRC pwns Windows (04.10.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod