|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Outlook denial of service
Nicholas W. Blasgen (nblasgen
REFRACT.COM)
Mon, 28 Jun 1999 14:52:34 -0700
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Aleph One: "Re: Outlook denial of service"
- Previous message: Philip Stoev: "Netscape 4.6 DoS"
- Next in thread: Aleph One: "Re: Outlook denial of service"
- Reply: Aleph One: "Re: Outlook denial of service"
I tested it with Outlook 2000 with Windows 98 and had no problem.
Nicholas Blasgen
Refract Media
"The hard part was figuring out how to destroy the
physical universe. But I think we've solved that."
- Marcus Larry, 1999
> I've found a problem in qualcomm popper (and presumabley others) in that
it
> doesn't check for an existing X-UIDL: headers, but simpley uses it when
the
> client sends in a uidl request. This problem can manifest itself as an
> effective denial of service attack against microsoft outlook clients
> because outlook looks for unique uidl's for each message and if there
are
> duplicates it will hang prior to downloading any mail. I've put up a
small
> web site detailing the problem and some possible work arounds/fixes at
>
> http://getaclue.org/yoduh/outlook.html
>
- Next message: Aleph One: "Re: Outlook denial of service"
- Previous message: Philip Stoev: "Netscape 4.6 DoS"
- Next in thread: Aleph One: "Re: Outlook denial of service"
- Reply: Aleph One: "Re: Outlook denial of service"
This archive was generated by hypermail 2.0b3 on Tue Jun 29 1999 - 20:24:17 CDT