Big-O Software

Nathan · Post by **Nathan** » Thu Nov 20, 2003 9:48 pm

so back to the topic
phase wanna tell me how you did it???
huh huh??

Nathan · Post by **Nathan** » Thu Nov 20, 2003 10:36 pm

dont ignore the question phase
i wanna know
theres a few people i wanna try it on
lol

Robpol86 · Post by **Robpol86** » Fri Nov 21, 2003 1:48 am

quit double posting, and stop w/ the damned smileys

(i smell a person trying to get his postcount up)

Plasma2002b · Post by **Plasma2002b** » Fri Nov 21, 2003 5:12 am

well since phase doesnt seem to be too eager to tell ya how its done, i guess i will......

Everybody knows that there are a few flaws in AIM. Its just common fact. One of these known holes can be exploited.

Using some common CGI knowledge, an attacker can use any Unix based host which s/he has shell access to, wether it be typing the commands in one by one, or simply loading them from a scripted list to be executed, the attacker can manipulate the Oscar server to redirect certain im messages back upon itself and then out after a givin callback time can spit the messages out to any other person with a valid SN.

Whats happening is that the messages get put in limbo for however long the attacker sees fit... looping the messages upon the Oscar's localhost gives the attacker one good thing..... multiplication. As soon as s/he wants to let the loop end and spread the messages back to whomever, the attackee, or victim, gets an insane amount of redundant and not so redundant messages.

A few simple pieces of coding can be stuck in to make it seem as if these messages are coming from thousands upon thousands of different people, or simply from one person.... or maybe possible a group of simmilar SN's.

The fact of the matter is this..... your connection, client software, memory, processor, or whatever just cant handle the sheer amount of rebounded information coming from one place all in that short period of time. Like it or not, its gonna take something down from your computer.

Drkdth446 · Post by **Drkdth446** » Sun Nov 23, 2003 7:11 pm

He most likely used either aim invader or cybermass to crash your computer rokbus

Anthony · Post by **Anthony** » Sun Nov 23, 2003 9:24 pm

No, that's what you would use.

Nathan · Post by **Nathan** » Mon Nov 24, 2003 11:17 am

finaly phase speaks
what do you mean thats what i would use
what did you do, the thing plasma said

Anthony · Post by **Anthony** » Mon Nov 24, 2003 1:12 pm

Ya... What Brian said...

... Actually I think I hacked into your computer, download your entire HD, and then logged you out from your own computer.

Nathan · Post by **Nathan** » Mon Nov 24, 2003 1:55 pm

lol
ya only i wasnt logged out
i restarted
and that would take a hell of a long time to download my hd

Anthony · Post by **Anthony** » Mon Nov 24, 2003 3:04 pm

Not my my super 1337 C0pr35i0n 7001.

Master Jedi · Post by **Master Jedi** » Mon Nov 24, 2003 3:31 pm

Speaking of Anthony's ub3r 1337 C0mpr35i0n 7001...I used it to compress an entire season of the Simpsons...31 bytes

Nathan · Post by **Nathan** » Mon Nov 24, 2003 3:59 pm

thats disgusting
i cant afford something like that

im jealous

Anthony · Post by **Anthony** » Mon Nov 24, 2003 4:09 pm

What... Are you nuts? It took me 3 years of programming and I had to hire Bill Gates to do half the work.

Nathan · Post by **Nathan** » Mon Nov 24, 2003 4:20 pm

how much did you pay billy
i could use a computer like that when i go after my career as a programmer
hey jedi are you programming as a job for a company, if so care to share with me how much this field of work pays?

Anthony · Post by **Anthony** » Mon Nov 24, 2003 5:32 pm

60,000 to 80,000

Big-O Software

???

stfu

Who is online