|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: ICQ Buffer Overflow Exploit
Subject: Re: ICQ Buffer Overflow Exploit
From: Thomas Maschutznig (hnt
GMX.AT)
Date: Sat Jan 15 2000 - 10:44:09 CST
- Next message: Homer Wilson Smith: "Re: Anyone can take over virtually any domain on the net..."
- Previous message: Antonio Ropero: "Re: IIS still revealing paths for web directories"
- Maybe in reply to: drew copley: "ICQ Buffer Overflow Exploit"
- Next in thread: x-x-x-x-x-x-x-x-x: "Re: ICQ Buffer Overflow Exploit"
- Maybe reply: Thomas Maschutznig: "Re: ICQ Buffer Overflow Exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Can (more or less) verify that overflow...
I am running ICQ 99beta 3.1.9 build #2596 and tried to send some MESSAGES
(no, NOT URL)
It seemed that only the messagebox would let you send larger stuff
Couldnt paste a lot into the URL-box
So, with messages...
entered http://www.alotofstuffhere......
I clicked it myself (yep, while entering) and Netscape opened up and ICQ
said byebyes :)
Could reproduce that 4 times in 4 tries
Now, with sending it to other people...
Somehow you cant send normal messages with more than 450 characters or whatever
but if you start with http://www... ICQ doesnt seem to check it and
messages with 2000 characters were no problem.
Gonna try _sending_ messages (and recieve) later when someone appears to be
online on my list :P
Peace out,
T
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.2 for non-commercial use <http://www.pgp.com>
iQA/AwUBOICVyrCVPCJvWxfLEQLGegCg+4c++1bQIDzeqTHw+X+7v1sUoLQAmwZ0
1ImsKN/HsO+Fe1rteybF+aXZ
=+pSv
-----END PGP SIGNATURE-----
- Next message: Homer Wilson Smith: "Re: Anyone can take over virtually any domain on the net..."
- Previous message: Antonio Ropero: "Re: IIS still revealing paths for web directories"
- Maybe in reply to: drew copley: "ICQ Buffer Overflow Exploit"
- Next in thread: x-x-x-x-x-x-x-x-x: "Re: ICQ Buffer Overflow Exploit"
- Maybe reply: Thomas Maschutznig: "Re: ICQ Buffer Overflow Exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Mon Jan 17 2000 - 17:39:47 CST