Yahoo! Chat! Add Buddy Restriction Bypass

2005-05-13T23:25:59
ID OSVDB:16817
Type osvdb
Reporter Torseq Tech.(bindshell@gmail.com)
Modified 2005-05-13T23:25:59

Description

Vulnerability Description

Yahoo! Chat! servers contains a flaw that may allow a remote attacker to bypass 'Add Buddy' restrictions. The problem is that the server does not send confirmation when 'Add Buddy' requests are made. With a specially crafted URL, a remote attacker can arbitrarily add buddies without permission and disclose their online status resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Yahoo! Chat! servers contains a flaw that may allow a remote attacker to bypass 'Add Buddy' restrictions. The problem is that the server does not send confirmation when 'Add Buddy' requests are made. With a specially crafted URL, a remote attacker can arbitrarily add buddies without permission and disclose their online status resulting in a loss of confidentiality.

References:

Vendor URL: http://chat.yahoo.com/ Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-05/0181.html