Signature Detail

Short Name	CHAT:AUDIT:YMSG:OFLOW-RESP-CRPT
Severity	Info
Recommended	No
Category	CHAT
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

YMSG: Response Crypt Overflow

This protocol anomaly is a Yahoo! Messenger challenge response message with a length that exceeds the user-defined maximum. A Yahoo! Messenger client sends a challenge response message after receiving the server challenge during the authentication process. The default challenge response length is 1024; you can change this setting in the Sensor Settings Rulebase>Protocol Thresholds and Configuration>Yahoo! Messenger>Crypt length.

Extended Description

None

References

URL: http://www.venkydude.com/articles/yahoo.htm
URL: http://libyahoo2.sourceforge.net/ymsg-9.txt
URL: http://messenger.yahoo.com/

Signature Detail

Short Name

Severity

Recommended

Category

Release Date

Update Number

Supported Platforms

YMSG: Response Crypt Overflow

Extended Description

References