Re:The exploit is there! (Score 2)

The exploit for AIM and other messaging protocols have been around since before August (but nobody reads those anyhow). The security hole posed by ICQ's protocols have been available since 1997! We can see some here: http://www.insecure.org/sploits/icq.sp00fer.html and here too: http://www.insecure.org/sploits/icq.spoof.overflow .seq.html there is code given that can be used to flood and take over the connection. Also some intresting things about the proprietary ICQ protocol implementation. As for AIM we happen to see that it gives a static open port that can be flooded. You will find that most corps. will not allow employees with net access to use AIM or AIM-Like products because of the security risks. Was M$ right about dropping the whole insane messenger thing? maybe they couldn't win--but Front Page extentsions and IIS are not exactly the models of security either.