|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: ICQ remote DoS
From: Philip Stoev (philip_stoev
INAME.COM)Date: Fri Mar 10 2000 - 12:06:43 CST
- Next message: Roger Safian: "12th Annual FIRST conference"
- Previous message: bladi: "Fwd: ircii-4.4 buffer overflow"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This does not seem something extraordinary, but somebody may find a ground
to expand upon:
ICQ Version 99b Beta v.3.19 Build #2569
freshly downloaded today from www.icq.com
The My ICQ Page functionality turns ICQ user's PC into (sort of) a web
server, listening on port 80. This web server serves an ready-made page with
various things on it, and among them -- a guestbook. Submissions to this
guestbook are hanlded by guestbook.cgi script.
When an external visitor requests an URL like
http://icq-user-ip-address-here/guestbook.cgi
, he or she will get a Forbidden HTTP reply. However, if the URL is
http://icq-user-ip-address-here/guestbook.cgi
(with a ? at the end), ICQ will crash with a simple GPF.
I must admit that I did not bother to notify the developers, because the TOS
that pop up every now and them discourage me to do so.
Philip
- Next message: Roger Safian: "12th Annual FIRST conference"
- Previous message: bladi: "Fwd: ircii-4.4 buffer overflow"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]