Re: AOL IM 4.7 d0s 0-Day

From: Tony Lambiris (methodicat_private)
Date: Tue Oct 02 2001 - 11:33:01 PDT

Next message: John Allen Scimone: "using stolen aspsession ids"

Previous message: dullienat_private: "Re: .com"
In reply to: Matthew Sachs: "Re: AOL IM 4.7 d0s 0-Day"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Proof of concept code up at http://sec.angrypacket.com

check under the "code" section.

On 10.01.01, Matthew Sachs <matthewgat_private> wrote:
> I just saw this with my custom AIM client.  It's an IM consisting of
> a repeated sequence of "<!-- " (sans quotes).  I tested it against
> WinAIM 4.7.2480 and it does indeed produce the crash you described.
> 
> -- 
> Matthew Sachs, the original nonstandard deviant
> matthewgat_private	http://www.zevils.com/
> GPG key: 0x600A0342	PGP key: 0x93EA1151

-- 
Tony Lambiris [methodicat_private]
   http://www.openbsd.org && http://www.openssh.com
       "Anyone who truly understands the power 
         of UNIX wouldn't use anything else."

Next message: John Allen Scimone: "using stolen aspsession ids"
Previous message: dullienat_private: "Re: .com"
In reply to: Matthew Sachs: "Re: AOL IM 4.7 d0s 0-Day"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Oct 02 2001 - 12:48:21 PDT