Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Re: AIM Backdoor?

From: "Virus Attack! - Incidents" <incidents () xnetwork com ar>
Date: Wed, 10 Apr 2002 22:50:23 +0200
Those are old news! ;-) Check out this link:

http://www.informationweek.com/story/IWK20010927S0021

You can surf to Google, search for 'free.aol.com', and ¡voilá! You'll get
more information about this threat. Anyway, there's not official answer
about this 'intrusion' in AOL user's computers in the results pages.

Best regards,

Ignacio M. Sbampato
Virus Attack!, Argentina
http://www.virusattack.com.ar


----- Original Message -----
From: "Chris Brenton" <cbrenton () altenet com>
To: <miked () rootdown net>
Cc: <incidents () securityfocus com>
Sent: Tuesday, April 09, 2002 5:44 PM
Subject: Re: AIM Backdoor?



miked () rootdown net wrote:


Anyone care to verify my findings or find a CSS vulnerability on
free.aol.com?


Confirmed on IE version 6. Tried this on a test machine and
http://free.aol.com gets added to the list of "trusted" sites without
any mention of the modification during the install.

HTH,
C
--
**************************************
cbrenton () altenet com

find / -name \*yourbase\* -exec chown us:us {} \;

--------------------------------------------------------------------------

--

This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com





----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
Previous By Date Next
Previous By Thread Next

Current thread: