Re: ICQ.com

[spiff <spiff () bway net>]

Wow 10 days later... sorry, a bit busy. 

Try www.insecure.org in their exploits section:
(http://www.insecure.org/sploits_microshit.html )

And also from an altavista boolean query on the string 'icq exploits'

1) http://www.e-n-i-g-m-a.com/hacks/icq.html 
(50 exploits on one page. curiously this site owner publishes _his_ ICQ #
elsewhere on this site too! Well, the nobel prize is still safe ;)

In short, security issues, privacy issues, and 'undocumented features' all
combine to make icq a real candidate for the award for the one single
piece software that can violate the most sections of your security policy
in one shot. It's neato keen too!

spiff


On Thu, 4 May 2000, Don Harris wrote:

> I've just discovered that our CEO had installed the main program offered from ICQ.com which can bypass a firewall.
>
> I now very little about this program or it's services.  I am also somewhat new to security and firewalls.
>
> Any advice and/or warnings on this software?  Is this software a crackers delight?
>
> Details welcomed.
>
> Thank you
>
> Don