Next Page >>
instant messaging
-----Original Message-----
From: Core Security Technologies Advisories [mailto:advisories@coresecurity.com]
Sent: Tuesday, September 25, 2007 6:21 PM
To: bugtraq@securityfocus.com; full-disclosure@lists.grok.org.uk; vulnwatch@vulnwatch.org; NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: CORE-2007-0817: Remote Command execution, HTML and JavaScript injection vulnerabilities in AOL's Instant Messaging software
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Core Security Technologies – CoreLabs Advisory
Core Security Technologies – CoreLabs Advisory
http://www.coresecurity.com/corelabs
Remote command execution, HTML and JavaScript injection vulnerabilities in
AOL’s Instant Messaging software
*Advisory Information*
Title: Remote Command execution, HTML and JavaScript injection
vulnerabilities in AOL's Instant Messaging software
Instant Messenger Inspection Vulnerability
+-----------------------------------------
Cisco ASA and Cisco PIX devices are affected by a crafted packet
vulnerability if Instant Messaging Inspection is enabled and the
device is running software versions prior to 7.2(4) on the 7.2.x
release, 8.0(3)10 on the 8.0.x release, or 8.1(1)2 on the 8.1.x
release. Devices running software versions in the 7.0.x and 7.1.x
releases are not vulnerable. Additionally, devices that do not have
Instant Messaging Inspection enabled are not vulnerable.
* Media Gateway Control Protocol (MGCP)
* SunRPC
* Trivial File Transfer Protocol (TFTP)
* X Display Manager Control Protocol (XDMCP)
* IBM NetBios
* Instant Messaging (depending on the particular IM client/solution
being used)
Note: UDP inspection engines may be enabled by default on Cisco ASA
Software. Please consult your user guide for more information.
Vulnerability Description
=====================
The vulnerability occurs as a result of how the SIP client component handles an incorrectly sip packet. Method of
INVITE or MESSAGE will be ok. MESSAGE is a sip method for Instant Messaging.
After X-Lite receive a malformed packet without "Content-Type" field, we call "Missing Content-Type Vulnerability",
it will be crash.
Solution
BZIP2, Unix/Linux ZIP, LZH, etc.
Network/Applications Controlled
* Email: Microsoft Outlook, Lotus Notes and SMTP Email
* Web mail: MSN/Hotmail, Yahoo, GMail, AOL Mail, and more
* Instant Messaging: MSN, AIM, Yahoo, and more
* Network Protocols: FTP, HTTP/HTTPS and SMTP Endpoint Devices Controlled
* USB, CD/DVD, COM & LPT ports, removable disks, floppy, infrared and
imaging
devices, print screen, modems, PCMCIA
Vulnerability Description
=====================
The vulnerability occurs as a result of how the SIP client component handles an incorrectly sip packet. Method of INVITE or MESSAGE will be ok. MESSAGE is a
sip method for Instant Messaging.
After WengoPhone receive a malformed packet without "Content-Type" field, we call "Missing Content-Type Vulnerability", it will be crash.
Solution
========
Not really.
Introduction:
=============
XPhone Unified Communications 2011 ist die leistungsstrkste Telefonie- und Kommunikationslsung von C4B.
Sie ist leicht zu bedienen und verbessert die Arbeitsablufe in Unternehmen. Die Lsung integriert sich
nahtlos in bestehende Anwendungen und nutzt die vorhandene Telefonanlage und IT-Infrastruktur. Dabei
werden die verschiedensten Kommunikationsmittel wie Telefon, Handy, Fax, Voicemail, SMS und Instant Messaging
vereint und mit Prsenzinformationen kombiniert. Die Software stellt leistungsfhige Telefonie-Funktionen in
praktisch allen Anwendungen wie z.B. Microsoft Outlook, Lotus Notes, Warenwirtschaftssystemen (ERP),
Kundendatenbanken (CRM) oder dem Webbrowser zur Verfgung. Die Verknpfung von Telefonereignissen mit bestimmten
Aktionen, z.B. Starten von Anwendungen, automatische Erstellung von Briefen oder Faxe u.v.m, verbessert die
ICQ 6.5 HTML-injection vulnerability
BACKGROUND
With more than 700 million instant messages sent and received every day, ICQ has been known to the online community as a messaging service. Today, a little more than a decade after the first ICQ instant messaging service was launched it has become much more than just that.
ICQ is a personal communication tool that allows users to meet and interact through instant messaging services such as text, voice, video and VoIP as well as various entertainment and community products.
Source: http://www.icq.com
VULNERABLE PRODUCTS
#######################################################################
Luigi Auriemma
Application: Ipswitch Instant Messaging
http://www.ipswitch.com/products/instant_messaging
Versions: <= 2.0.8.1
Platforms: Windows
Bugs: A] pre-auth NULL pointer crash in decryption function
B] format string in logging
Introduction:
=============
XPhone Unified Communications 2011 ist die leistungsstrkste Telefonie- und Kommunikationslsung von C4B.
Sie ist leicht zu bedienen und verbessert die Arbeitsablufe in Unternehmen. Die Lsung integriert sich
nahtlos in bestehende Anwendungen und nutzt die vorhandene Telefonanlage und IT-Infrastruktur. Dabei
werden die verschiedensten Kommunikationsmittel wie Telefon, Handy, Fax, Voicemail, SMS und Instant Messaging
vereint und mit Prsenzinformationen kombiniert. Die Software stellt leistungsfhige Telefonie-Funktionen in
praktisch allen Anwendungen wie z.B. Microsoft Outlook, Lotus Notes, Warenwirtschaftssystemen (ERP),
Kundendatenbanken (CRM) oder dem Webbrowser zur Verfgung. Die Verknpfung von Telefonereignissen mit bestimmten
Aktionen, z.B. Starten von Anwendungen, automatische Erstellung von Briefen oder Faxe u.v.m, verbessert die
2. BACKGROUND
Fastpath WebChat is part of the Fastpath product. It provides a way
for users to begin chatting with support agents using Fastpath.
Fastpath is a plugin of OpenFire, a real time collaboration (RTC)
server for instant messaging. Fastpath provides queuing and routing
for instant messaging to intelligently link people together.
3. VULNERABILITY DESCRIPTION
Overview:
Lotus Domino is a client/server product designed for collaborative
working environments. Domino is designed for e-mail, scheduling,
instant messaging and data driven applications.
There exists a vulnerability in the way memory mapped files are
used under Windows. The result of which is that if the Lotus Notes
Client is used in a Microsoft Terminal Services or Citrix
environment users can read each others Lotus Notes session data
I. BACKGROUND
---------------------
"Novell GroupWise is a messaging and collaborative software platform that
supports email, calendaring, personal information management, instant
messaging, and document management." (Wikipedia)
II. DESCRIPTION
---------------------
VUPEN Vulnerability Research Team discovered a critical vulnerability
Sep 26, 2011
I. BACKGROUND
GroupWise is Novell's messaging platform, and includes support for
email, calendaring, and instant messaging. More information is available
at the following website:
http://www.novell.com/products/groupwise/
II. DESCRIPTION
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
CVE ID : CVE-2011-1754
Wouter Coekaerts discovered that jabberd14, an instant messaging server
using the Jabber/XMPP protocol, is vulnerable to the so-called
"billion laughs" attack because it does not prevent entity expansion on
received data. This allows an attacker to perform denial of service
attacks against the service by sending specially crafted XML data to it.
Finally, let me explain how I personally use virtual machines to put this
all in context of why I think this is important. I use Windows Vista as my
host machine, logged in as a non-admin user. I am typing this e-mail--also
as a non-admin user--in a Windows XP virtual machine dedicated to instant
messaging and e-mail. On another monitor I have a VM running Windows 2003 as
a domain controller (btw, you need the client utilities on domain
controllers to keep the clock correct) where I am logged in as an
administrator, but the screen saver is password-protected and I lock the
console anyway when I am finished using it. On that machine I have a number
of admin and networking tools installed. Finally, I have yet another Windows
I. BACKGROUND
---------------------
"Novell GroupWise is a messaging and collaborative software platform that
supports email, calendaring, personal information management, instant
messaging, and document management." (Wikipedia)
II. DESCRIPTION
---------------------
http://labs.idefense.com/intelligence/vulnerabilities/
Aug 30, 2007
I. BACKGROUND
Yahoo! Messenger is a instant messaging application that allows users to
chat online, share files, conduct PC to PC calls and more. More
information can be found on the vendor's site at the following URL.
http://messenger.yahoo.com/
Problem type : remote
Debian-specific: no
CVE Id : CVE-2010-2725
Debian Bug : 593299
It has been discovered that in barnowl, a curses-based instant-messaging
client, the return codes of calls to the ZPending and ZReceiveNotice
functions in libzephyr were not checked, allowing attackers to cause a
denial of service (crash of the application), and possibly execute
arbitrary code.
I. BACKGROUND
----------------------
Novell GroupWise is a complete collaboration software solution that
provides information workers with e-mail, calendaring, instant
messaging, task management, and contact and document management
functions. The leading alternative to Microsoft Exchange, GroupWise
has long been praised by customers and industry watchers for its
security and reliability.
http://www.novell.com/products/groupwise/
Debian-specific: no
CVE Id(s) : CVE-2010-0420 CVE-2010-0423
Debian Bug : 566775 579601
The packages for Pidgin released as DSA 2038-1 had a regression, as they
unintentionally disabled the Zephyr instant messaging protocol. This
update restores Zephyr functionality. For reference the original
advisory text below.
Several remote vulnerabilities have been discovered in Pidgin, a multi
protocol instant messaging client. The Common Vulnerabilities and
Nine:Situations:Group::SnoopyAssault
site: http://retrogod.altervista.org/
exploit url: http://retrogod.altervista.org/9sg_c6_download_exec.html
"C6 Messenger is an instant messaging program produced by Telecom Italia Group,
specifically by Alice (distribution), Icon Spa (development, design and server)
and Opendoc (graphics). It is the only instant messenger entirely produced in
Italy, is a free program, allows you to chat in real time with friends[..]"
installation urls:
* Browsing to a web-site that contains the malicious content
* HTML that is embedded in e-mail messages
* HTML that is delivered via instant messaging applications
WebEx Upgrade Timeline
+---------------------
Upgrades from WBS 23 versions to WBS 26 are expected to be complete
- eBuddy Windows Live Messenger (web)
[Vendor Product Description]
- eBuddy is a privately-held company which owns a browser-based web
and mobile messenger service supporting various instant messaging
services. eBuddy was launched in 2003 under the name e-Messenger,
located at www.e-messenger.net, before re-branding itself in 2006 to
eBuddy.
- eBuddy supports Windows Live Messenger, Yahoo! Messenger, AIM, ICQ,
Sep 26, 2011
I. BACKGROUND
GroupWise is Novell's messaging platform, and includes support for
email, calendaring, and instant messaging. More information is available
at the following website:
http://www.novell.com/products/groupwise/
II. DESCRIPTION
Debian-specific: no
CVE Id(s) : CVE-2010-0420 CVE-2010-0423
Debian Bug : 566775 579601
The packages for Pidgin released as DSA 2038-2 had a regression, as they
unintentionally disabled the Silc, Simple, and Yahoo instant messaging
protocols. This update restore that functionality. For reference the
original advisory text below.
Several remote vulnerabilities have been discovered in Pidgin, a multi
protocol instant messaging client. The Common Vulnerabilities and
Sep 26, 2011
I. BACKGROUND
GroupWise is Novell's messaging platform, and includes support for
email, calendaring, and instant messaging. More information is available
at the following website:
http://www.novell.com/products/groupwise/
II. DESCRIPTION
Version: 2.0, It is suspected that all previous versions of Groupwise
Messenger Client are vulnerable.
.:: BACKGROUND
Novell GroupWise Messenger is a corporate instant messaging product that uses
Novell eDirectory? as its user database
More info: http://www.novell.com
537
Introduction:
=============
LAN Messenger is a free and open source cross-platform instant messaging application for communication over a
local network. It does not require a server. A number of useful features including event notifications, file transfer
and message logging are provided.
(Copy of the Website: http://lanmsngr.sourceforge.net )
Next Page>>
|
