1.  Home
  2. MIDRANGE-L
  3. March 2001

Re: blocking ports

Note that you can easily change the port AIM uses.  Right now, mine is set 
to 20.  A button in the config allows it to search for a usable port. 


Jeff Carey
Technical Specialist
AS/400 Technology
Transaction Processing Systems
DF5-1W 
847-948-2191




"Jim Franz" <franz400@triad.rr.com>
Sent by: owner-midrange-l@midrange.com
03/21/01 05:56 PM
Please respond to MIDRANGE-L

 
        To:     <MIDRANGE-L@midrange.com>
        cc: 
        Subject:        Re: blocking ports



several from www.sans.org
Advisory ...multiple buffer overflows ...AOL Instant Messenger  ...a 
malicious Web site or e-mail to execute arbitrary code on a user's system.
AOL Instant Messenger v3.5.1856 contains buffer overflow that  leads to 
the crashing of the client; 
Advisory and exploit that details a bug in the  Messenger/winpopup service 
in Windows 95/98 has been published. The denial of  service causes the 
whole system to become unstable and sometimes even  immediately reboot.
A report has surfaced indicating a potential problem in AOL  Instant 
Messenger (versions 4.1 through 4.4). Due to the way AIM logs data, it  is 
possible for a malicious user to send a malformed image embedded in a 
conversation. While this won't affect the current conversation, it may 
alter the  log files in such a way that would cause JavaScript/VBScript to 
be executed when  the user views logs of the conversation
 
When initiated, it can be a 2-way "trusted" path, thru your  firewall (you 
do have one?). 
jim
----- Original Message ----- 
From:  M. Lazarus 
To: MIDRANGE-L@midrange.com 
Sent: Wednesday, March 21, 2001 10:49  PM
Subject: Re: blocking ports

Angie,

At 3/21/01 12:21 PM -0500, you wrote:
The instant messengers  that come with many browsers like AOL create a 
security problem.  
 What is the  problem?

 -mark



+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.