|
 |  |  |  |  |  |  |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
 |
| |
05-27-2009
| #1 (permalink) |
| | Security Risk in Live Messenger Build 14.0.8064.206 Hi there, I've just come across a security risk in live messenger which is enabling a worm to travel around pretty quickly on the service. Basically all someone has to do is click on the the links sent by one of their contacts and BAM, you're infected, it will then sent itself to your own contacts. An example of such messages.... ---- come chat with me here waiting for you.... http://<msnusername>.flick-photoz.com/ ---- Hey! http://www.adultdatezzzz.com/chat.php ---- Come chat with lots of singles for FREE !! I am to be found here from now on: http://<msnusername>.soulmateseekerz.com/adultchat.php brb ---- replace <msnusername> for the first part of your live ID, i.e. Quote: >bob<@msn.com neither of which were mine. I'm not sure that this is a Live Authentication security flaw as even after closing Live Messenger it remains open sending messages, the only way to stop it completely is to terminate it via task manager. The next time you restart messenger it will start again. I've suggested resetting the Live ID of the effected accounts and will report as to whether that works or not! Nick. |
My System Specs |
|
05-27-2009
| #2 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 Resetting the Live ID password fixes it. "nak" <a@xxxxxx> wrote in message news:9698E26C-6B41-40C0-B6D9-AB9D3565AC68@xxxxxx Quote: > Hi there, > > I've just come across a security risk in live messenger which is enabling > a worm to travel around pretty quickly on the service. Basically all > someone has to do is click on the the links sent by one of their contacts > and BAM, you're infected, it will then sent itself to your own contacts. > > An example of such messages.... > > ---- > > come chat with me here waiting for you.... > > http://<msnusername>.flick-photoz.com/ > > ---- > > Hey! > http://www.adultdatezzzz.com/chat.php > > ---- > > Come chat with lots of singles for FREE !! > I am to be found here from now on: > > http://<msnusername>.soulmateseekerz.com/adultchat.php brb > > ---- > > replace <msnusername> for the first part of your live ID, i.e. Quote: > >bob<@msn.com > I've just witnessed this transfer itself between 2 MSN clients, thankfully > neither of which were mine. > > I'm not sure that this is a Live Authentication security flaw as even > after closing Live Messenger it remains open sending messages, the only > way to stop it completely is to terminate it via task manager. The next > time you restart messenger it will start again. I've suggested resetting > the Live ID of the effected accounts and will report as to whether that > works or not! > > Nick. > |
| My System Specs |
|
05-28-2009
| #3 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 is this something new or is it something that has been around before....if they are unusual links you don't click on them anyway. if you have any doubts ack the contact who sent them :s -- Four Generations Of Trust And Betrayal...One Legacy Skywolfe "nak" wrote: Quote: > Resetting the Live ID password fixes it. > > "nak" <a@xxxxxx> wrote in message > news:9698E26C-6B41-40C0-B6D9-AB9D3565AC68@xxxxxx Quote: > > Hi there, > > > > I've just come across a security risk in live messenger which is enabling > > a worm to travel around pretty quickly on the service. Basically all > > someone has to do is click on the the links sent by one of their contacts > > and BAM, you're infected, it will then sent itself to your own contacts. > > > > An example of such messages.... > > > > ---- > > > > come chat with me here waiting for you.... > > > > http://<msnusername>.flick-photoz.com/ > > > > ---- > > > > Hey! > > http://www.adultdatezzzz.com/chat.php > > > > ---- > > > > Come chat with lots of singles for FREE !! > > I am to be found here from now on: > > > > http://<msnusername>.soulmateseekerz.com/adultchat.php brb > > > > ---- > > > > replace <msnusername> for the first part of your live ID, i.e. Quote: > > >bob<@msn.com > > I've just witnessed this transfer itself between 2 MSN clients, thankfully > > neither of which were mine. > > > > I'm not sure that this is a Live Authentication security flaw as even > > after closing Live Messenger it remains open sending messages, the only > > way to stop it completely is to terminate it via task manager. The next > > time you restart messenger it will start again. I've suggested resetting > > the Live ID of the effected accounts and will report as to whether that > > works or not! > > > > Nick. > > |
| My System Specs |
|
05-28-2009
| #4 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 > is this something new or is it something that has been around before....if Quote: > they are unusual links you don't click on them anyway. if you have any > doubts > ack the contact who sent them :s neither of which were mine." And that doesn't stop this being a security risk and it doesn't stop the fact that this is spreading like wild fire on the network at current. Look at it like this, if Microsoft have removed the most recent API for messenger so I can't even make a simple Add-in that enables me to automate message replies etc. then how on earth is this thing doing it? It's obviously a security risk, and if it requires a change of password then it's a pretty big security risk. With that said it obviously needs to be addressed lol! Nick. |
| My System Specs |
|
05-28-2009
| #5 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 Hi there, I've just come across a security risk in live messenger which is enabling a worm to travel around pretty quickly on the service. Basically all someone has to do is click on the the links sent by one of their contacts and BAM, you're infected, it will then sent itself to your own contacts. click the link and you are infected.... seems to me this has been going on for a while now. I have gotten links like that on 8.5 and this version as well. but the way you are making it sound it as though all you have to do is log into messenger and you are infected... if it is in the link. don't click the link which is why I said ask the contact first... and in some cases it has to be removed via malwarebytes and other programs to get the infection off of there. have had that happen to a friend recently. then you can reset the password. -- Four Generations Of Trust And Betrayal...One Legacy Skywolfe "nak" wrote: Quote: Quote: > > is this something new or is it something that has been around before....if > > they are unusual links you don't click on them anyway. if you have any > > doubts > > ack the contact who sent them :s > " I've just witnessed this transfer itself between 2 MSN clients, thankfully > neither of which were mine." > > And that doesn't stop this being a security risk and it doesn't stop the > fact that this is spreading like wild fire on the network at current. > > Look at it like this, if Microsoft have removed the most recent API for > messenger so I can't even make a simple Add-in that enables me to automate > message replies etc. then how on earth is this thing doing it? It's > obviously a security risk, and if it requires a change of password then it's > a pretty big security risk. > > With that said it obviously needs to be addressed lol! > > Nick. > > |
| My System Specs |
|
05-28-2009
| #6 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 I didn't SAY THAT YOU CAN TELL SOMEONE TO CLICK ON A LINK DID I No I don't know anything about software development because for one thing I know nothing about it. WHAT I AM SAYING is that this has been going on for oh I dunno months now? and you are just now discovering this? I am sorry if maybe I am missing the point on this here but YES I DO READ. and just how is it possible to block a domain when you have no clue what the domain is? the links are different each time.... I do agree that things could probably be patched against it but it would be finding where the problem ORIGINATES in the first place that would be hard to track in the first place. and if asking questions or possibly being concerned about something is not "intelligent" in your eyes then I am deeply sorry. -- Four Generations Of Trust And Betrayal...One Legacy Skywolfe "nak" wrote: Quote: Quote: > > if it is in the link. don't click > > the link which is why I said ask the contact first... and in some cases it > > has to be removed via malwarebytes and other programs to get the infection > > off of there. have had that happen to a friend recently. then you can > > reset > > the password. > You are completely missing the point here! > > For a start I just said TWICE that it wasnt me that clicked the links. > So try reading. > > Secondly you can't tell a user not to do something like click a link > that has been sent you on MSN as it will rape your live credentials. If you > think you can then you need to learn a little about software development as > you clearly haven't got a clue. > > If these links are so well known then the domains should blocked should > they not? It's not uncommon for offending URLS to be blocked in MSN, this > has been common practice for a long time and you can even install "patches" > which increase the security of message transport between contacts, namely > URLs. > > And no, I'm not going to email every one of my contacts to tell them to > change their live passport credentials. > > Seriously, if you can't say anything intelligent, just be quiet. > > Nick. > > > |
| My System Specs |
|
05-28-2009
| #7 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 > I didn't SAY THAT YOU CAN TELL SOMEONE TO CLICK ON A LINK DID I No I Quote: > don't > know anything about software development because for one thing I know > nothing > about it. WHAT I AM SAYING is that this has been going on for oh I dunno > months now? and you are just now discovering this? I am sorry if maybe I > am > missing the point on this here but YES I DO READ. and just how is it > possible to block a domain when you have no clue what the domain is? the > links are different each time.... I do agree that things could probably be > patched against it but it would be finding where the problem ORIGINATES in > the first place that would be hard to track in the first place. and if > asking questions or possibly being concerned about something is not > "intelligent" in your eyes then I am deeply sorry. I had already said twice that I hadn't clicked the link, 2 of my contacts had. So get your facts straight. You then told me to tell them to not click the link, want proof? "... if it is in the link. don't click the link..." It's pretty black and white, and I did not say you merely log into messenger, I said once the link is clicked, that's it until you have changed your credentials. I have contacts who restart their PC and the problem persists, so it's quite evidently a major security flaw. Which you aren't prepared to try and resolve because you think it's impossible to fix, hence why you lack intelligence. Oh wow, so you have been experiencing this for months now and not at least attempted to have anything done about it which is exactly what I'm trying to do. Yes it can be stopped, here are a number of ways, 1. A security mode option, low security would allow all URLS through, tight security would only allow trusted domains through. A domain would be trused after you have allowed it through. 2. A way of reporting URLS that are malicious, the URLS could then be investigated by MSN staff who don't mind having their account credentials stolen from under their feet. 3. CAPTCHA verification upon attempting to send an URL, no matter how anal it sounds it would of stopped this issue from ever occurring. I'm not sure how you use the newsgroup but it clearly isn't for attempting to improve the product. You haven't shown any concern in the slightest, you told me not to click the link, next you will be teaching your grandmother how to suck eggs. I was reporting a security risk, if this is not something you deal with then ignore the post, there are no prizes here. |
| My System Specs |
|
05-28-2009
| #8 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 lol!1 I have nothing to do with the formation of anything or FIXING of anything I am a user the same as you are....if that is a problem then I am sorry for answering to a post. -- Four Generations Of Trust And Betrayal...One Legacy Skywolfe "nak" wrote: Quote: Quote: > > I didn't SAY THAT YOU CAN TELL SOMEONE TO CLICK ON A LINK DID I No I > > don't > > know anything about software development because for one thing I know > > nothing > > about it. WHAT I AM SAYING is that this has been going on for oh I dunno > > months now? and you are just now discovering this? I am sorry if maybe I > > am > > missing the point on this here but YES I DO READ. and just how is it > > possible to block a domain when you have no clue what the domain is? the > > links are different each time.... I do agree that things could probably be > > patched against it but it would be finding where the problem ORIGINATES in > > the first place that would be hard to track in the first place. and if > > asking questions or possibly being concerned about something is not > > "intelligent" in your eyes then I am deeply sorry. > WTF? You quite clearly told me not to click on the link. > > I had already said twice that I hadn't clicked the link, 2 of my contacts > had. So get your facts straight. You then told me to tell them to not > click the link, want proof? > > "... if it is in the link. don't click the link..." > > It's pretty black and white, and I did not say you merely log into > messenger, I said once the link is clicked, that's it until you have changed > your credentials. I have contacts who restart their PC and the problem > persists, so it's quite evidently a major security flaw. Which you aren't > prepared to try and resolve because you think it's impossible to fix, hence > why you lack intelligence. > > Oh wow, so you have been experiencing this for months now and not at least > attempted to have anything done about it which is exactly what I'm trying to > do. > > Yes it can be stopped, here are a number of ways, > > 1. A security mode option, low security would allow all URLS through, tight > security would only allow trusted domains through. A domain would be trused > after you have allowed it through. > 2. A way of reporting URLS that are malicious, the URLS could then be > investigated by MSN staff who don't mind having their account credentials > stolen from under their feet. > 3. CAPTCHA verification upon attempting to send an URL, no matter how anal > it sounds it would of stopped this issue from ever occurring. > > I'm not sure how you use the newsgroup but it clearly isn't for attempting > to improve the product. > > You haven't shown any concern in the slightest, you told me not to click the > link, next you will be teaching your grandmother how to suck eggs. I was > reporting a security risk, if this is not something you deal with then > ignore the post, there are no prizes here. > > > |
| My System Specs |
|
05-28-2009
| #9 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 as far as being concerned? yeah I would like it stopped like everyone else. I also have had more COMPUTER PROBLEMS MYSELF with this machine than most people do. -- Four Generations Of Trust And Betrayal...One Legacy Skywolfe "nak" wrote: Quote: Quote: > > I didn't SAY THAT YOU CAN TELL SOMEONE TO CLICK ON A LINK DID I No I > > don't > > know anything about software development because for one thing I know > > nothing > > about it. WHAT I AM SAYING is that this has been going on for oh I dunno > > months now? and you are just now discovering this? I am sorry if maybe I > > am > > missing the point on this here but YES I DO READ. and just how is it > > possible to block a domain when you have no clue what the domain is? the > > links are different each time.... I do agree that things could probably be > > patched against it but it would be finding where the problem ORIGINATES in > > the first place that would be hard to track in the first place. and if > > asking questions or possibly being concerned about something is not > > "intelligent" in your eyes then I am deeply sorry. > WTF? You quite clearly told me not to click on the link. > > I had already said twice that I hadn't clicked the link, 2 of my contacts > had. So get your facts straight. You then told me to tell them to not > click the link, want proof? > > "... if it is in the link. don't click the link..." > > It's pretty black and white, and I did not say you merely log into > messenger, I said once the link is clicked, that's it until you have changed > your credentials. I have contacts who restart their PC and the problem > persists, so it's quite evidently a major security flaw. Which you aren't > prepared to try and resolve because you think it's impossible to fix, hence > why you lack intelligence. > > Oh wow, so you have been experiencing this for months now and not at least > attempted to have anything done about it which is exactly what I'm trying to > do. > > Yes it can be stopped, here are a number of ways, > > 1. A security mode option, low security would allow all URLS through, tight > security would only allow trusted domains through. A domain would be trused > after you have allowed it through. > 2. A way of reporting URLS that are malicious, the URLS could then be > investigated by MSN staff who don't mind having their account credentials > stolen from under their feet. > 3. CAPTCHA verification upon attempting to send an URL, no matter how anal > it sounds it would of stopped this issue from ever occurring. > > I'm not sure how you use the newsgroup but it clearly isn't for attempting > to improve the product. > > You haven't shown any concern in the slightest, you told me not to click the > link, next you will be teaching your grandmother how to suck eggs. I was > reporting a security risk, if this is not something you deal with then > ignore the post, there are no prizes here. > > > |
| My System Specs |
|
05-28-2009
| #10 (permalink) |
| | Re: Security Risk in Live Messenger Build 14.0.8064.206 > lol!1 I have nothing to do with the formation of anything or FIXING of Quote: > anything I am a user the same as you are....if that is a problem then I am > sorry for answering to a post. from proceeding any further with getting the problem resolved by saying it's the users fault for clicking the link. That's my only problem with your reply. It's nothing personal  |
| My System Specs |
|
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| Windows Live Mail Version 2009, 14.0.8064.0206 + Messenger | Live Messenger | |||
| Windows Live Messenger 2009 (14.0.8064.260) sign in problems (XP S | Live Messenger | |||
| Windows Live Messenger (14.0.8064.0206) re-installs on every reboot | Windows Live | |||
| Windows Live Essentials updated to build 14.0.8064.0206 | Vista News | |||
| Live Messenger 8.5 update - New Build | Windows Live | |||
