«
»

mIRC 6.35 gets released, fixes security flaw

Little over one month after the last release of the popular IRC-client, a new version becomes public.

According to the website the update is due to a security flaw concerning “very long nicknames on non-standard servers” and it is therefore a recommended upgrade for everyone.

Also, it seems the exploit code for the mentioned vulnerability is already in the wild so it’s advised to update in a timely manner or deploy the following workaround if an upgrade is not possible:

on ^*:OPEN:?:*:if ($len($nick) > 298) halt

The above snippet should be added to ones mIRC’s remotes and shall then prevent the hole from being exploited.

Thanks to slakker for the tip & links!

Related posts:

  1. Nettalk fixes crash bug and releases 6.6.4 Nettalk, an opensource IRC client available for Windows, was updated...
  2. mIRC 6.34 has been released 4 days ago, Khaled Mardam-Bey released a new version of...
  3. mIRC 6.32 Released Version 6.32 of probably the most popular IRC client have...
  4. New ircd-ratbox stable release fixes crashbugs [Updated] Developer androsyn just announced the availability of ircd-ratbox 2.2.9, a...
  5. mIRC 6.33 Released “This version of mIRC continues to build on recent releases...

Tags: , , ,

This entry was posted on Thursday, October 30th, 2008 at 10:57 pm and is filed under IRC, Software, mIRC. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply