IrcII is a well-known Internet Relay Chat (IRC) client for unix. Version 4.4-7 and possibly previous versions are known to be vulnerable to a buffer overflow condition in their direct client-to-client (DCC) chat implementation. It may be possible to execute arbitrary code on a client attempting to initiate a dcc chat. Exploitation this vulnerability could result in a remote compromise with the privileges of the user running the ircII client. Upgrade IRCII to version 4.4M. Michael Sandrof upgrade IrcII 4.4M ftp://ircftp.au.eterna.com/pub/ircII/ircii-4.4M.tar.gz
This is fixed in the errata release - thanks.