Bugtraq: America Online AOL Instant Messenger AIM6.0 or 6.5 or higher XSS remote execution

Securities/SecurityFocus Vulnerabilities
2007/12/22 15:41
AOL instant messenger인 AIM6.0, 6.5, 그이상의 버전에서 크로스사이트 리모트 excution이 발생한다.
America Online AOL Instant Messenger AIM6.0 or 6.5 or higher XSS remote execution Dec 21 2007 11:15PM
evanchik gmail com
Sorry for the brief post but Im still able to bypass filters that aol has put in place. So again with frustration I come to FD to imply pressure on a company to patch correct. From reading feedback from AOL they feel the vulnerability is put to bed and requires no more attention.

I am not posting 0day PoC only currently patched examples.

Do not use any AIM 6 or higher client.

old PoC

http://before0day.com/Lists/Posts/Post.aspx?ID=3

references

http://www.wired.com/politics/security/news/2007/12/aim_hack

http://www.pronetworks.org/index.php/software-and-betas-news/847#comment
-199

http://talkback.zdnet.com/5208-12691-0.html?forumID=1&threadID=41986&mes
sageID=785355&start=-1

Michael Evanchik

http://before0day.com

Posted by 후니 유
태그 , , , , ,
트랙백 0 : 댓글 0

댓글을 달아주세요:: 스팸은 정중히 사절합니다.

◀ PREV : [1] : ... [322] : [323] : [324] : [325] : [326] : [327] : [328] : [329] : [330] : ... [802] : NEXT ▶
BLOG main image
Cr4cK th3 W0Rld by 후니 유

공지사항

1,213,889


Today : 103
Yesterday : 206
Top Technology blogs web tracker
hit counters

최근에 올라온 글

최근에 달린 댓글

카테고리

전체보기 (802)
Etc (246)
Hacked Brain (280)
My Project (32)
데일리 (22)
운영체제 (31)
프로그래밍 (92)
Securities (27)

최근에 받은 트랙백