Core Security Technologies has spotted a hole in the popular AOL IM program. The problem is surrounding a bug by which the IM handles emoticons. The IM uses IE's engine to render emoticons. The problem is that it uses too much IE that an attacker can use to redirect to malicious site. AOL reported that they have fixed the problem but the firm reports it is still there. The IM versions 6.1 and 6.2 have the problem.
more
Posts
Stumble It!
No comments:
Post a Comment