Home › Forums › Archives › Instant Messaging › Yahoo! Messenger Support › Security Advisory: Yahoo! Messenger 6.0
- This topic has 11 replies, 6 voices, and was last updated 19 years, 2 months ago by sweetie4willie2003.
-
AuthorPosts
-
February 14, 2005 at 1:41 am #16962UnSaKreDMember
Yahoo! Messenger 6.0, is vulnerable to a malformed Display Image packet.
Resulting in the compromise of the Victims Computer.
In order for this exploit to work, the user must allow display Images.
Suggestion to all, shut off display images and avatars until Yahoo! Remedies the flaw.
February 14, 2005 at 1:43 am #114519OreoMemberIs this something you found? What exactly could happen when this exploit is used? Just curious. 🙂 Thanks for keeping us updated!
February 14, 2005 at 1:45 am #114522UnSaKreDMemberYes Oreo, this is something I found.
The full potential of this exploit has not yet been decided.
And I dont want to go into a full technical description of what it can do,
Or how it is done.
It has been submitted to yahoo!, and hopefully they will fix it.
February 14, 2005 at 2:30 am #114520OreoMemberGood….and I’m glad you don’t tell the FULL description what it does, I know you would not do that. I was just curious, in case some one has already tried to use it…what kinds of problems we should be expecting. Thank you so very much for letting all of us know about these things. You add a lot to the site and take the high road on many occasions where things might otherwise get ugly. 🙂
February 14, 2005 at 4:52 am #114516Jeff HesterKeymasterHack your computer.
February 14, 2005 at 6:27 am #114525sweetie4willie2003Memberhow do i boot people
February 14, 2005 at 6:34 am #114517Jeff HesterKeymastersweetie4willie2003 wrote:how do i boot peopleOne of those unsolved mysteries. 😉
February 14, 2005 at 2:56 pm #114521OreoMemberWe do NOT discuss how to hack people on this site. If this thread cannot stay the way Unsakred started it (as a warning and to HELP people do LEGAL things) it WILL be locked and those of you who are violating the rules or encouraging others to will be dealt with…CAPISCE?
February 14, 2005 at 3:12 pm #114523neo_ny_23Membercool. am too lazy to create a display image of my own. forget about implementing it.but as a student of cyber crime and internet security, i wonder how this stuff works.
February 14, 2005 at 6:17 pm #114524SS_AntiHackerMemberDear UnSaKreD,
What build of YM! did you test it on? Besides version 6, does 5 also affected? Btw, this seems like a variant of an old exploit regarding how YM! handles images and avatars.
So is this new finding a buffer overflow? design flaw? care to explain a little bit more? =)
Good job !!! and keep us up to date ;P
February 16, 2005 at 6:22 am #114515Jeff HesterKeymasterSS_AntiHacker wrote:Dear UnSaKreD,What build of YM! did you test it on? Besides version 6, does 5 also affected? Btw, this seems like a variant of an old exploit regarding how YM! handles images and avatars.
So is this new finding a buffer overflow? design flaw? care to explain a little bit more? =)
Good job !!! and keep us up to date ;P
Kids don’t get technical information!
February 17, 2005 at 1:03 pm #114518Jeff HesterKeymasterSS_AntiHacker wrote:Dear UnSaKreD,What build of YM! did you test it on? Besides version 6, does 5 also affected? Btw, this seems like a variant of an old exploit regarding how YM! handles images and avatars.
So is this new finding a buffer overflow? design flaw? care to explain a little bit more? =)
Good job !!! and keep us up to date ;P
You’re not getting any technical information! 🙂
-
AuthorPosts
- You must be logged in to reply to this topic.