AIM fixed? Can anyone confirm? http://www.msnbc.com/modules/exports/ct_email.asp?/news/680950.asp Thanks, Mark C. ----- Original Message ----- From: Matt Conover <shokat_private> To: Paul Schmehl <paulsat_private> Cc: <bugtraqat_private> Sent: Wednesday, January 02, 2002 12:00 PM Subject: Re: AIM addendum > > The temporary solution you provide would only protect you so long as all > > the buddies on your list were not compromised. As soon as one buddy is > > compromised, then you are vulnerable *through* that buddy. Or am I not > > clearly understanding this exploit? > > Yes, which is why in the original advisory we recommended AIM filter be > installed. This will block the attack from anyone. So only allowing your > buddies to contact you in addition to installing AIM filter will keep you > secure until a new version of AIM comes out.
This archive was generated by hypermail 2b30 : Thu Jan 03 2002 - 14:16:40 PST