ICQ6 Exploit

Read this first In this article I’m giving you information on how to crash peoples ICQ Clients and do worse. Do not use this for fucking around with people! I’m serious, don’t! I show this because I think it’s a security lack and shows how crappy the original ICQ client is. This is  only for informational purposes. If you break peoples computers and get cought, don’t blame me, I warned you! 

The ICQ6 client is based on the Microsoft Internet Explorer and Flash (and in fact that’s 90% of why I think it’s the biggest crap ever made). Everything that crashes IE oder Flash will crash ICQ. 

Let’s begin having fun.  

If ICQ gets HTML Tags, it reacts. That’s how Textcolor and Fonts are done. Tzers  are nothing more than flash files beeing played. With some minor knowledge in html you can write some code that is interpreted on someones machine. 

So how do you get the code on someones machine?

I use Miranda on windows machines because I can customize it to my needs.  So I’ll be using miranda (I’m currently experimenting with AdiumX so check back later for results). You have to have Miranda and a plugin called „icq+.dll“. ICQ+ is used instead of the normal „icq.dll“ and allows some more features, for example sending „tzers“.

As I said above tzers are nothing more than flash animations played on your machine. The flashfiles are located on an icq server (you can use google to find out more about that). With Miranda and ICQ+ you can send tzers and what’s important, you can set a name for them. So why is this important:

The name given to it will be shown in the message window of ICQ6. You see the word „scratch“, that’s the name you can set. This name is not plain text, if you put in html there, it will be rendered (in fact ICQ6 is putting html in to allow replaying the animation).Let’s say we put in an image tag.  The image will be shown on ICQ6 clients.   

I guess you can think of a lot of bad things you can do with this.But there is more! Remember ICQ6 is based on IE and IE has a lot of security holes. There are lot’s of exploits crashing IE and worse…  

Guess what, it works on ICQ6. You can even use PHP. Jscript won’t work (it might but right now I haven’t got it to work).  

And there is one more thing!If you don’t want to download Miranda or can’t cause you’re on a Linux or Mac machine all you have to do is send a format-string-specifier and ICQ6 will crash. That’s right, send it to anyone using ICQ6 and it will crash. Scary! If you don’t know what a        format-string-specifier is or which ones work best, just google.