ICQ Web Front Remote denial of service vulnerability - ICQ 2000a, 99b, and 99a contain a vulnerability in the personal web server. Guestbook.cgi, installed by default, crashes when sent a long name.
05ba8a95f1072921afea8cf60d91a06e244658a30f3a4b75372c90226af4d779
/\__ ____ _ /\____ /\__ ____
\_ \ / _//\_ /:\ /\ /\_ ___ /\____ \___ \ \_ | _/
/ : \/ . \ . | (__) | \. )\___ \ / .) \ / : \
/ . . \ \_) . | / \ | / ( )__) / \ / \
( ( ) )._) |___( )| . \ /\_. \( : )( : )
\__/\_/\ /_ )_____ )\ / \__\_ )\____ )\___|_ / \___|_ /
\/ \/ \/ \/ \/ \/ \/ \/
---------------------------------------------------Meliksah Ozoral
[E-mail meliksah@meliksah.net]------------------------------------
----------------------------------------------------[ICQ 10390761]
[ICQ Web Front Remote DoS Attack Vulnerability]-------------------
------------------------------------------------------[29/05/2000]
[www.meliksah.net]------------------------------------------------
Affected Versions : 2000a - 99b - 99a ...
I tested bug on 2000a and 99b
Web front is a simple service to host a home page on your own computer.
This service include guestbook.cgi and you can crash remote computer
by using guestbook.cgi. Firstly test it on your own computer. Click on
Services in the ICQ Window. Select Free ICQ Homepage (or My ICQ Web Front).
Select Activate Homepage (My ICQ Web Front), a Home icon will now appear
beside your name in the Contact List of other users. Now run your browser
and visit https://localhost . Click the guestbook icon and write something
to your guestbook and send. After this, type this url in your browser :
https://localhost/guestbook.cgi?name=01234567890012345678901234567890
ICQ Crashed!
NOT : ICQ Web Front request authorize. If you try use this url directly you
should see "Stop sending multiple comments, please" message or "HTTP Error
403"
Please apply all steps in text to test bug!
Greetings: Projman, Spook, Misoskian, Mikrop and others...
\___ \/ ___/ E
/ \ L __/\__
_/ \_ I \ OO /
\ \ / / K / \/ \
\\ //\/\\ // $ ~~\/~~
\\ / \\ / A 2000
\/ \/ H