Previous Thread
Next Thread
Print Thread
Rate Thread
#7787 05/20/02 12:37 PM
Joined: May 2002
Posts: 1
T
Tom Offline OP
Junior Member
OP Offline
Junior Member
T
Joined: May 2002
Posts: 1
I was wondering if Yahoo PM or private chat rooms are subject to cracking?

#7788 05/20/02 02:31 PM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
There is always a possibility of cracking/hacking to anything anywhere, I believe that Yahoo did have a problem some time ago with cracking, but I'm not sure if they fixed their breach.


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
#7789 05/20/02 04:16 PM
Joined: Mar 2002
Posts: 562
UGN Supporter
Offline
UGN Supporter
Joined: Mar 2002
Posts: 562
I said it before, and I'll say it again. NOTHIN is secure in networking. If you can unlock it for privilaged users, then you can crack it. It is that simple. Security is a matter of path of least resitance and obsurity.

If you are more secure than jimmy over there, most will go for jimmy. If his weaknesses are published and yours aren't. He is most likely to get hacked. However, you can stil be hacked. Every program every computer can be hacked. This may stop with the introduction of the q-bit. But probably not. <img border="0" alt="[Angel]" title="" src="graemlins/angel.gif" />

#7790 05/30/02 01:04 PM
Joined: Mar 2002
Posts: 11
B
Junior Member
Offline
Junior Member
B
Joined: Mar 2002
Posts: 11
sorry about the messed up page. here's the link instead:

http://viceconsulting.com/cons/servs/infosec/yimvul001/alert00.html

#7791 05/30/02 01:06 PM
Joined: Mar 2002
Posts: 11
B
Junior Member
Offline
Junior Member
B
Joined: Mar 2002
Posts: 11
sorry i had to post it like that. it had some "<" and the bbs wouldnt allow that.

heres another one.

Quote:

Yahoo! Messenger! multiple! vulns!

By Thomas C Greene in Washington
Posted: 28/05/2002 at 09:08 GMT

There are two new Yahoo Instant Messenger (YIM) vulnerabilities which can potentially compromise a user's machine, Vietnamese researcher Phuong Nguyen has discovered. Yahoo! has been notified and a fixed version is available for download here.

First up, an unchecked buffer which enables any URL beginning with 'ymsgr:' to call ypager.exe, crash it and run malicious code if the messenger is integrated with the browser. All that's needed is 268 bytes to overflow the buffer, and exploit code can be loaded with the user's level of privilege. The 'call', 'sendim', 'getimv', 'chat', 'addview' and 'addfriend' function calls can be exploited, Nguyen says.

Next up a problem with the 'addview' feature which enables the messenger to view Web content on its own. This is vulnerable to freaky URLs and malicious JavaScript and VB script. Yahoo! content can be duplicated and malicious scripts embedded in the HTML to give an attacker numerous means to exploit a target. See Nguyen's original advisory for links to a couple of simple demonstrations (which I've not verified). Yahoo! has removed this particular 'feature' in the fixed version pending further engineering magic to make it safe, Nguyen says.
links:

http://download.yahoo.com/dl/installs/ymsgr/ymsgr_1065.exe
http://viceconsulting.com/cons/servs/infosec/yimvul001/alert00.html

#7792 05/30/02 01:08 PM
Joined: Mar 2002
Posts: 11
B
Junior Member
Offline
Junior Member
B
Joined: Mar 2002
Posts: 11
what the hell just happen to the page? eek eek eek

#7793 05/30/02 08:42 PM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
his [code] tags


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
#7794 05/31/02 04:45 AM
Joined: Mar 2002
Posts: 1,273
DollarDNS Owner
Offline
DollarDNS Owner
Joined: Mar 2002
Posts: 1,273
ya, if UBB would just topalign and leftalign all of it's message TD tags than things would look a lot better - even with Learner's code tags.

Or, if that's not the problem, then instead of embedding tables within another, then just use one large table so that all the elements would line up.


Domain Registration, Hosting, Management
http://www.dollardns.net
#7795 05/31/02 12:07 PM
Joined: Mar 2002
Posts: 533
Enforcement Admin
Offline
Enforcement Admin
Joined: Mar 2002
Posts: 533
Okay... Which one of you little brats screwed up the formatting of the UBB table? *takes off belt abd folds it in half*


Link Copied to Clipboard
Member Spotlight
Posts: 30
Joined: June 2002
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Crime 1
Ice 1
Dartur 1
Cyrez 1
Powered by UBB.threads™ PHP Forum Software 7.7.5