Bugtraq mailing list archives
Re: AIM addendum
From: Paul Schmehl <pauls () utdallas edu>
Date: Wed, 02 Jan 2002 13:42:08 -0600
The temporary solution you provide would only protect you so long as all the buddies on your list were not compromised. As soon as one buddy is compromised, then you are vulnerable *through* that buddy. Or am I not clearly understanding this exploit?
--On Wednesday, January 02, 2002 9:17 PM +0300 Matt Conover <shok () dataforce net> wrote:
2. A temporary solution to this vulnerability is: 1. Go to your Preferences 2. Go to the Privacy section 3. Click "Allow only users on my Buddy List" under "who can contact me" This will disable the vulnerability because you will appear signed off to anyone not in your buddy 3.
Paul Schmehl (pauls () utdallas edu) Supervisor of Support Services The University of Texas at Dallas AVIEN Founding Member
Current thread:
- AIM addendum Matt Conover (Jan 02)
- Re: AIM addendum Paul Schmehl (Jan 02)
- Re: AIM addendum Matt Conover (Jan 02)
- Heap overflow in snmpnetstat Juan M. de la Torre (Jan 03)
- Re: AIM addendum Mark Coleman (Jan 03)
- Re: AIM addendum Paul Schmehl (Jan 03)
- Re: AIM addendum Matt Conover (Jan 02)
- Re: AIM addendum Paul Schmehl (Jan 02)
- <Possible follow-ups>
- Re: AIM addendum austin naremore (Jan 03)
- Re: AIM addendum Tyler (Jan 04)