Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

aim.2.0.ip.address.txt

🗓️ 17 Aug 1999 00:00:00Reported by Packet StormType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 30 Views

AIM 2.0 exploit reveals user IP address during file transfer, compromising anonymity.

Code
`Exploit in the newest AIM 2.0  
  
IU Uprising ([email protected])  
Tue, 8 Jun 1999 18:39:50 PDT   
  
In the newest version of AIM (AOL Instant Messenger) there is a way to  
transfer files. When you are transferring the file, you can open a DOS  
prompt and type:  
  
netstat -a -n  
  
By doing this you (obviously) can get the person's IP address. Usually it  
will be on port 5190. This may seem pointless because usually not much can  
be done with simply an IP address, but under certain circumstances this can  
be useful.  
  
Thanks,  
a|chEmist  
  
-----------------------------------------------------------------------  
  
Date: Thu, 10 Jun 1999 13:23:00 -0700  
From: Aleph One <[email protected]>  
To: [email protected]  
Subject: Re: Exploit in the newest AIM 2.0  
  
Folks, the reason this is an issue is because until now AIM  
was anonymous in as much as the client IP was never disclosed  
to other clients. All communication between clients in AIM  
was handled via an intermediary server. This breaks that  
anonymity which is a shame. Anyone who is been on IRC can  
attest to the harassment one can come under by someone else  
just by them knowing your IP address.  
  
--  
Aleph One / [email protected]  
http://underground.org/  
KeyID 1024/948FD6B5  
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Aug 1999 00:00Current
7.4High risk
Vulners AI Score7.4
aim 2.0file transferip addressanonymity breachexploitationcommunication security.
30