[380] in bugtraq
Re: Got this - not sure of authenticity. Better safe etc...
daemon@ATHENA.MIT.EDU (Jim Littlefield)
Tue Dec 6 11:03:28 1994
From: "Jim Littlefield" <little@ragnarok.hks.com>
Date: Tue, 6 Dec 1994 08:43:51 -0500
In-Reply-To: geiri@stud.cs.uit.no (Geir Inge Jensen)
"Re: Got this - not sure of authenticity. Better safe etc..." (Dec 6, 11:44am)
To: bugtraq@fc.net
On Dec 6, 11:44am, Geir Inge Jensen wrote:
: >
: > There is no way to transmit a virus to a computer via the terminal.
: > Sure, maybe you can turn the printer on and off. Or maybe start up an
: > zmodem download but you cannot get a virus on a remote machine by sending
: > ascii...
:
: Well, if the terminal happens to be a PC, isn't it possible to remap a
: keyboard by sending ANSI escape sequences in the message? If so, just remap
: a key to be '<enter>DEL C:\*.*<enter>'! Should cause some damage...
Something to remember is that AOL provides a program for users to use when
dialing in. A bad security hole would exist if this program supports any
"magic" headers, etc.
Just my $0.02.
--
Jim Littlefield "Some would sooner die than think. In fact,
<little@hks.com> they often do." -- Bertrand Russell
