|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: ICQ Buffer Overflow Exploit
Subject: Re: ICQ Buffer Overflow Exploit
From: Jeremy Johnson (jjohnson
REAL.COM)
Date: Wed Jan 19 2000 - 05:05:22 CST
- Next message: Stefan Schneider: "Re: problem with SNMPc"
- Previous message: Brian Mueller: "Security Issues with HIGHSPEEDWEB.NET leased servers"
- In reply to: Bryce Walter: "Re: ICQ Buffer Overflow Exploit"
- Next in thread: Nick Summy: "Re: ICQ Buffer Overflow Exploit"
- Reply: Jeremy Johnson: "Re: ICQ Buffer Overflow Exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
not hard at all, numerous have already been written for linux/BSD.
http://www.freshmeat.net/search.php3?query=icq
At 07:43 PM 1/18/00 +0000, Bryce Walter wrote:
>Yes, but how tough would it be to write your own client to send msgs on the
>icq network. MS did it w/ AOL's instant messenger. :)
>
>
>
>>I have been playing with this bug a little, and it seems that ICQ only
>>picks
>>up oversize messages when they are keyed in, and not when they are pasted.
>>maybe it wouldn't be so bad if this was fixed so that at least the client
>>couldn't be used to execute this attack. :-/
>
>______________________________________________________
>Get Your Private, Free Email at http://www.hotmail.com
- Next message: Stefan Schneider: "Re: problem with SNMPc"
- Previous message: Brian Mueller: "Security Issues with HIGHSPEEDWEB.NET leased servers"
- In reply to: Bryce Walter: "Re: ICQ Buffer Overflow Exploit"
- Next in thread: Nick Summy: "Re: ICQ Buffer Overflow Exploit"
- Reply: Jeremy Johnson: "Re: ICQ Buffer Overflow Exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Thu Jan 20 2000 - 18:36:27 CST