Preface: AOL w00w00 attackLogo -Internet Security Systems

AOL w00w00 attack
advICE :Intrusions : 2003302
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

Someone has attempted to comprtomise the AIM (AOL Instant Messenger) application on the system.

Details

AIM v4.3 for Win32 contains a buffer overflow that can be exploited through a "man-in-the-middle" attack, where a cracker/hacker interposes themselves between the client and the server. The intruder is able to run arbitrary software on the system, and will probably attempt to install a Remote Access Trojan in order to control the system. The vulnerability exists in the AIM application when it tries to parse a malformed game request.

Defense

Use a different version of AIM. Scan your system with a virus scanner to look for Trojan signatures.

 more information
BugtraqID: 3769   AOL Instant Messenger Remote Buffer Overflow
 
advICE: Buffer Overflow  
General information about buffer-overflow attacks.   
 
Version appeared: 3.0
Privacy Policy |  Copyright Info