Bugtraq mailing list archives

Yet another DOS/Exploit in ICQ??????

From: arnvidk () POWERTECH NO (Arnvid L. Karstad)
Date: Mon, 10 Aug 1998 20:35:33 +0200


Hello Everyone..

I just got an unconfirmed message about an exploit using an remote API
in ICQ. This API supposidly gives the attacker the possibility to make
your ICQ execute programs. i.e format your drive,  change your nick,
delete all your files etc. These "hackers" supposidly made a program
that "acts" like an ICQ-server send commands to the unaware client..

Anyone else heard about this..


Regards,

Arnvid Karstad

PS: I'm working on confimation.....

Current thread:

Re: Sendmail up to 8.9.1 - mail.local instroduces new class of Jonathan Stott (Aug 10)
- Re: Sendmail up to 8.9.1 - mail.local instroduces new class of Chip Salzenberg (Aug 10)
- Yet another DOS/Exploit in ICQ?????? Arnvid L. Karstad (Aug 10)
- Re: Sendmail up to 8.9.1 - mail.local instroduces new class of Brett Lymn (Aug 10)
  - Re: Sendmail up to 8.9.1 - mail.local instroduces new class of Kari E. Hurtta (Aug 12)
  - Re: Apache DoS Attack Dag-Erling Coidan Smørgrav (Aug 12)
  - Microsoft Security Bulletin (MS98-008) Aleph One (Aug 12)
  - Security Bulletins Digest (fwd) Piotr Strzy¿ewski (Aug 12)
- Netscape Exploit? Mozilla? Crispin Cowan (Aug 11)
- FW: CERT Advisory CA-98.10 - mime_buffer_overflows Patrick Oonk (Aug 11)
  - Re: FW: CERT Advisory CA-98.10 - mime_buffer_overflows (VU#5648) John D. Hardin (Aug 11)
- RotoRouter 1.0 - Traceroute log & fake #include (Aug 11)
  - Re: RotoRouter 1.0 - Traceroute log & fake Vadim Kolontsov (Aug 11)