Forum latest

Researchers say AIM vulnerable to worm attack
General
Written by Daniel   
Wednesday, 26 September 2007 11:42
 A flaw in the way AIM handles HTML messages could be exploited with malicious code to take over a victim's computer or create a far-reaching instant-messaging worm

By Robert McMillan, IDG News Service, Info World
September 25, 2007
A critical flaw in the way that the AOL's instant messaging client, AIM, displays Web-based graphics could be exploited by criminals to create a self-copying worm attack, security researchers are warning. The flaw was discovered by researchers at Core Security Technologies, which has been working with AOL over the past few weeks to patch the problem. AOL's servers are now filtering instant messaging traffic to intercept any attacks, but the company has yet to patch the underlying problem in its client software, security researchers said Tuesday.

The flaw has to do with the way the AIM software uses Internet Explorer's software to render HTML messages. By sending a maliciously encoded HTML message to an AIM user, an attacker could run unauthorized software on a victim's computer or force the IE browser to visit a maliciously encoded Web page, said Core CTO Iván Arce.... More   Comment in the Forums
 

See also

None found.


Hardware | Windows | Linux | Security | Mobile Devices | Gaming
Tech Business | Editorial | General News | folding@home

Forum | Download Files

Copyright ©2001 - 2012, AOA Forums.  All rights reserved.

Alliance of Overclocking Arts

Links monetized by VigLink

Don't Click Here Don't Click Here Either