AIM Bug

From: Dave B. (bzerob@bellatlantic.net)
Date: 11/25/02

Next message: David Miller: "XSS vulnerability in Bugzilla if upgraded from 2.10 or earlier"

Previous message: Dave Ahmad: "[Security bulletin] SSRT2266 HP Tru64 UNIX IGMP Potential (DoS) Security Vulnerability (fwd)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Dave B." <bzerob@bellatlantic.net>
To: <bugtraq@securityfocus.com>
Date: Sun, 24 Nov 2002 21:15:53 -0500

Major AIM Bug Courtesy Of Infested Nexus --- AIM: Infested Nexus. I have =
uncovered a bug in America Online's AIM service, which can allow a =
normal user to be able to transfer any file onto another users computer =
without consent. This works using the 'get file' feature. If a user has =
the option to allow others to get files without a prompt this hack can =
be executed. After downloading the USERX.lst file - end the file =
connection. Then name any file you wish to send and rename it USERX.lst =
and use the "send file" feature. The file will immediately begin =
transferring without asking for authentication on USERX's computer - =
though they will see the download box. I have tested this on a number of =
people who were away from their computer and it has worked. Tested on =
AIM 5.0.2938. If you go further with this exploit please give credit to =
Infested Nexus. ---- Infested Nexus AIM: Infested Nexus

Be well!
~Dave

Next message: David Miller: "XSS vulnerability in Bugzilla if upgraded from 2.10 or earlier"
Previous message: Dave Ahmad: "[Security bulletin] SSRT2266 HP Tru64 UNIX IGMP Potential (DoS) Security Vulnerability (fwd)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]