Vulnerability Development mailing list archives
Re: ICQ Spoofing Question (or second dumb question of the day)
From: Masial <masial () SECURED ORG>
Date: Sat, 23 Sep 2000 14:12:16 -0400
Heh, somehow i knew someone would say this :)
-----Original Message----- From: Bluefish (P.Magnusson) [mailto:11a () gmx net] Now, I do agree that hacking icq accounts by the aid of JPEG is extremly far fetched, but actually possible? A number of netscape versions (perhaps other softwares as well) had an exploitable overflow in the JPEG handling. Assuming that someone wrote a kit which was designed to aid in an attack somehow (shellcode which actually grabs icq passwords sounds a bit hard to code though), attackers could actively use JPEGs for this.
Ok well, the point of my original comment was to underline the cluelesness of the ICQ people about security and the internet in general.. But If someone sends me a JPEG directly, there is no telling what program I'm going to use to open the picture, but i can tell you that its NOT going to be netscape (i like lview). If someone's goal was to exploit a JPEG vulnerability in a web browser, I belive the best way to exploit a victim would be to send him/her to a web page (via an URL message) containing the poisoned JPEG. So I still belive its extremely unlikely to have somoneone grab others' passwords by sending them a JPEG. Maybe you can assume the person did not realise that everyone does not open jpegs with netscape (or other infected software) but i dont think that someone who would assume this could write the kind of fancy JPEG exploit we'r talking about. I guess, everything is possible now tho. I remember days when i told people : "No, you cannot catch a virus just by opening an email. Thats not possible". Thats evolution for ya. M.
Current thread:
- ICQ Spoofing Question (or second dumb question of the day) Leon Rosenstein (Sep 19)
- Re: ICQ Spoofing Question (or second dumb question of the day) Robert van der Meulen (Sep 19)
- Re: ICQ Spoofing Question (or second dumb question of the day) Riley Hassell (Sep 19)
- Re: ICQ Spoofing Question (or second dumb question of the day) Sander Smeenk (CistroN Medewerker) (Sep 20)
- Re: ICQ Spoofing Question (or second dumb question of the day) Robert van der Meulen (Sep 20)
- Re: ICQ Spoofing Question (or second dumb question of the day) Masial (Sep 20)
- Re: ICQ Spoofing Question (or second dumb question of the day) Robert van der Meulen (Sep 21)
- Re: ICQ Spoofing Question (or second dumb question of the day) dis (Sep 22)
- Message not available
- Re: ICQ Spoofing Question (or second dumb question of the day) Audun (Sep 24)
- Re: ICQ Spoofing Question (or second dumb question of the day) Bluefish (P.Magnusson) (Sep 23)
- Re: ICQ Spoofing Question (or second dumb question of the day) Masial (Sep 24)
- Re: ICQ Spoofing Question (or second dumb question of the day) Robert van der Meulen (Sep 19)
- Re: ICQ Spoofing Question (or second dumb question of the day) 3APA3A (Sep 20)
- <Possible follow-ups>
- Re: ICQ Spoofing Question (or second dumb question of the day) Ozy --- (Sep 24)