Results 1 to 2 of 2

Thread: CERT Advisory-Buffer Overflow in AOL ICQ

  1. January 25th, 2002, 12:37 AM #1
    KOBBRAS
    KOBBRAS is offline
    Banned
    Join Date
    Jan 2002
    Posts
    101

    CERT Advisory-Buffer Overflow in AOL ICQ

    There is a remotely exploitable buffer overflow in ICQ. Attackers that are able to exploit the vulnerability may be able to execute arbitrary code with the privileges of the victim user. Full details are discussed in VU#570167.

    Read more at www.xatrix.org
  2. January 25th, 2002, 01:18 AM #2
    zigar
    zigar is offline
    Senior Member
    Join Date
    Jan 2002
    Posts
    682
    From CERT---II. Impact
    A remote attacker can execute arbitrary code with the privileges of the victim user.

    From ICQ---
    A bug has been found in the ICQ Voice Video & Games feature for versions earlier than 2001b. To resolve any potential issue, we encourage you to upgrade to ICQ 2001b, where this problem is fixed, for better security and best use of ICQ.

    would you believe they're even talking about the same thing???.,...a BUG?...to me a bug is somethin that...i dunno...bsod's me or somethin annoying...something that potentially exposes me to anything an attacker wants to do is more than a bug...it's a major security flaw...

    we encourage you...for better security...wtf are they thinkin...i mean i couldn't even find a link to this issue from the icq page...did find one for "Britney's New Movie on ICQ"...guess that's one of the reasons i tossed icq...

    irresponsible if ya ask me...course nobody did...
    I used to be With IT. But then they changed what IT was. Now what I'm with isn't IT, and what's IT seems scary and weird." - Abe Simpson
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules