News AOL Messenger has highly critical hole

Now I'm sure none of you would be caught dead using AOHELL, but its news all the same.

This from the Inq:

A CRITICAL ERROR IN AOL Instant Messenger, or AIM, has been reported at security website secunia.com. The vulnerability in the highly popular chat program was spotted by a fella' called Ryan McGeehan (no relation), which can be exploited to compromise a user's system.

It turns out that if a user sets his or her status to "away" – a user on "away" will automatically send back an "away message" to anyone who tries to contact them – there's a problem present. A boundary error with the handling of away messages can be used to create a stack-based buffer overflow by supplying an overly long away message, said Secunia.

If someone performs the exploit correctly, it can potentially allow for the execution of code on the system, which could, for example, open up malicious websites in certain browsers. The problem has been reported and confirmed in version 5.5.3595, although other versions could very well be affected.

Secunia is giving this vulnerability a "highly critical" rating, and says the only way to get around it at the moment is to use another product.

That's all folks, but you can read it again in a slightly different font here

 

i cant wait to see all the little kiddies laptops explode

freaking idoits.

"WHY ARE THESE PORNO THINGS COMMING UP?!!"

HAHAHHA

 

There was an error between the keyboard and the chair to start with.

 

Is this referring to the user, or the AOL programmer? (Or both...? )

 

Well.. I know SEVERAL Exploits on aim.. Programmers dont bother to fix them.

 

rofl. i really havnt kept up with the news on it. i leave that wrechid program alone

damn 8 year olds and their preschool friends playing on it. they deserve to be hacked.

 

Can tell you beleive in children learning how to use computers at an early age

Death

 

it could come in handy though as a defense for all the spim recieved on aim.