mIRC < 6.03 Scripting $asctime Overflow
Medium Nessus Network Monitor Plugin ID 1863
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote host is running the mIRC chat client. A buffer overflow has been reported in the $asctime identifier, a function in the mIRC scripting language. The error lies in the handling of oversized format specifier strings. Exploitation relies on a script passing untrusted input into this function. Reportedly, no such script is included in the default installation of mIRC.
SolutionUpgrade to version 6.03 or higher.