|
Internet Security Systems Protocol Analysis Module ICQ Parsing Buffer Overflow Vulnerability
CORE has developed a working commercial exploit for their IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild. This vulnerability is being actively exploited in the wild. The W32.Witty.Worm (MCID 2675) exploits this issue and it is propagating with a fixed source port of UDP port 4000. The worm appears to be contained in a single UDP datagram. Sam has supplied the following proof of concept exploit: |
|
|
Privacy Statement |
