Vulnerabilities

CVE-2019-6453

by Fred · 18/02/2019

mIRC before 7.55 allows remote command execution by using argument injection through custom URI protocol handlers. The attacker can specify an irc:// URI that loads an arbitrary .ini file from a UNC share pathname. Exploitation depends on browser-specific URI handling (Chrome is not exploitable).

Date published : 2019-02-18

https://www.exploit-db.com/exploits/46392/

https://github.com/proofofcalc/cve-2019-6453-poc

Similar

Tags: Cybersecurity Alert