Correct me if I'm wrong but simply accepting a "malicious connection" doesn't pose a risk unless there is something for said connection to exploit on your system.
Provided there isn't a script and/or mIRC bug to be exploited I don't think there is an issue.
