Security hole in AOL's AIM v2.0 (latest release) allows remote attacker to get AIM user IP address. No more anonymity on AOL?
cdd48552c00bca219e1db58607f52afe1c930a253e4f0cb97722f96f5e9d664c
Exploit in the newest AIM 2.0
IU Uprising (iuprising@HOTMAIL.COM)
Tue, 8 Jun 1999 18:39:50 PDT
In the newest version of AIM (AOL Instant Messenger) there is a way to
transfer files. When you are transferring the file, you can open a DOS
prompt and type:
netstat -a -n
By doing this you (obviously) can get the person's IP address. Usually it
will be on port 5190. This may seem pointless because usually not much can
be done with simply an IP address, but under certain circumstances this can
be useful.
Thanks,
a|chEmist
-----------------------------------------------------------------------
Date: Thu, 10 Jun 1999 13:23:00 -0700
From: Aleph One <aleph1@UNDERGROUND.ORG>
To: BUGTRAQ@netspace.org
Subject: Re: Exploit in the newest AIM 2.0
Folks, the reason this is an issue is because until now AIM
was anonymous in as much as the client IP was never disclosed
to other clients. All communication between clients in AIM
was handled via an intermediary server. This breaks that
anonymity which is a shame. Anyone who is been on IRC can
attest to the harassment one can come under by someone else
just by them knowing your IP address.
--
Aleph One / aleph1@underground.org
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01