also @ TechSpot: AMD A4-5000 Review: the affordable ultraportable APU

AIM vulnerability brings possibility of remote attack

By Derek Sooman

On August 10, 2004, 12:19 PM

iDEFENSE, a security research and consulting company, has reported that AOL Instant Messenger has a previously undetected security flaw, and if left unpatched this could open up machines to remote attack.

"Oversized values passed to the "goaway" function of AIM's "aim:" URI handler may be used to overwrite the pointer to the Structured Exception Handler, which could then be used to execute code written by the attacker."

Apparently, the attack would manifest itself as a link in the instant messaging window, which when clicked would open the user up to the possibility of attack.

Better patch it before some anorak wearing, 30 stone guy who lives in his Mom's basement starts using this exploit to annoy us all.

No tags on this story

Post a comment

Post a new comment

Social Login & Guest Posting TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.
TechSpot on:

Most Popular

Trending Featured
More Trending Topics

Featured on Routers

Downloads and Drivers

Downloads   Drivers  

KiTTY 0.62.2.3

mIRC 7.32

Actual Bookmarks 1.2

World of Warcraft Patch 5.3.0

Funny Photo Maker 2.4.1

More Downloads

Latest Discussion

What's the difference between DDR3 memory and GDDR5 memory? 21 replies on Processors and Motherboards

Watercooling Setup Linking together help 8 replies on Overclocking, Cooling and Modding

Wireless capability keeps turning off 21 replies on Storage and Networking

Need advice on router-buy 10 replies on Storage and Networking

Zotac gtx 660 fan problem 6 replies on Audio and Video

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.