Hosting Provided By

RE: Yahoo Messenger Stale Sessions

From: David Gillett <gillettdavid(at)fhda.edu>
Date: Wed Nov 13 2002 - 12:35:11 EST

Not so arbitrary. He needs to not only spoof the IP address your friend had, but also get the other port number and the TCP sequence number right. Which might not be much challenge *IF* he was able to sniff your original conversation. (If he's spoofing rather than assuming the address, he'll need to sniff your machine's responses....)

That much probably limits it to people within either your, or your friend's, network provider. Then there's the question of what to do with this connection. Is there a vulnerability in Yahoo Messenger that could be exploited from there? (If so, should you be using it at all?)

David Gillett

> -----Original Message-----
> From: Leonard.Ong@nokia.com [mailto:Leonard.Ong@nokia.com]
> Sent: Tuesday, November 12, 2002 5:39 PM
> To: incidents@securityfocus.com
> Subject: RE: Yahoo Messenger Stale Sessions
>
>
> Hello All,

This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com Received on Wed Nov 13 16:35:36 2002

This message: [ Message body ]
Next message: Jeremy Junginger: "RE: Unicode Attack (FOLLOW UP)"
Previous message: Tijl Schoonenberg: "Re: Port 5552?"
In reply to Leonard.Ong(at)nokia.com: "RE: Yahoo Messenger Stale Sessions"
Next in thread: John Fitzgerald: "RE: Yahoo Messenger Stale Sessions"
Reply: John Fitzgerald: "RE: Yahoo Messenger Stale Sessions"
Reply: BANIER Jeremie: "Re: Yahoo Messenger Stale Sessions"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:50 EDT