Re: ICQ Buffer Overflow Exploit

From: Bryce Walter (brycewalterat_private)
Date: Tue Jan 18 2000 - 11:43:26 PST

Next message: Hank Leininger: "Re: usual iploggers miss some variable stealth scans"

Previous message: David LeBlanc: "Re: usual iploggers miss some variable stealth scans"
Maybe in reply to: drew copley: "ICQ Buffer Overflow Exploit"
Next in thread: Jeremy Johnson: "Re: ICQ Buffer Overflow Exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Yes, but how tough would it be to write your own client to send msgs on the
icq network.  MS did it w/ AOL's instant messenger.  :)



>I have been playing with this bug a little, and it seems that ICQ only
>picks
>up oversize messages when they are keyed in, and not when they are pasted.
>maybe it wouldn't be so bad if this was fixed so that at least the client
>couldn't be used to execute this attack. :-/

______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

Next message: Hank Leininger: "Re: usual iploggers miss some variable stealth scans"
Previous message: David LeBlanc: "Re: usual iploggers miss some variable stealth scans"
Maybe in reply to: drew copley: "ICQ Buffer Overflow Exploit"
Next in thread: Jeremy Johnson: "Re: ICQ Buffer Overflow Exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:29:04 PDT