Vulnerabilities > CVE-2007-4402 - Remote Security vulnerability in Mirc 2.49
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
mirc
Summary
Multiple unspecified scripts in mIRC allow user-assisted remote attackers to execute arbitrary code via the '|' (pipe) shell metacharacter in the name of the song in a .mp3 file.
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-August/065227.html
- http://secunia.com/advisories/26491
- http://securityreason.com/securityalert/3036
- http://wouter.coekaerts.be/site/security/nowplaying
- http://www.securityfocus.com/archive/1/476283/100/0/threaded
- http://www.securityfocus.com/archive/1/476649/100/0/threaded