We found the overflow bug of CHOCOA 1.0beta7R. It overflows when that receives the long TOPIC. If the server send the long TOPIC that contains the exploit code, client executes any code. This exploit code execute any command on the target windows.
1d808b55df808f181f7c029bf9268dfc7cd5c39061fb3906cefe50db633b1825