YTK Pro recently released their new BDP feature which makes you totally unbootable on Yahoo Instant Messenger. A few days later information got leaked on to the YTunnelPro website on how this feature worked. People was sending messages to “Donna Smith” asking to take credit for the feature. This feature was discovered by Brock , Adam and Venom over at YTK Pro. It seems somebody else is trying to take credit for the feature to make you unbootable on Yahoo Messenger. This is Adams statement about BDP which is the feature to make you unbootable on the YMSG Protocol.

Well guys, now that a guy named LegendKiller (from Y!TunnelPro’s forum) was so nice as to attempt to “Reverse Engineer” our BDP option in YTK Pro beta build 430 I’ll tell you what’s going on here (he looked at our external event logger and was able to figure it out).

Over the last several weeks Yahoo! has started “patching” their servers against the buffer boot exploit. Their “patch” consists of getting rid of the disconnection rule entirely when packet data is pending against you in the buffer. Nowadays if you were to be bombed with a booter you will NOT be disconnected regardless of what type the booter is (even if it’s some hot new exploit it won’t matter).

What does this mean? This means that of the 61+ servers to chat on 6 of them I’ve found to be protected against all boots. Here is the following list of them (I tested all of them and here are my results at the time of this post):

Unbootable Servers:

- cs1.msg.dcn.yahoo.com
- cs2.msg.dcn.yahoo.com
- cs40.msg.dcn.yahoo.com
- cs50.msg.dcn.yahoo.com
- cs55.msg.dcn.yahoo.com
- cs58.msg.dcn.yahoo.com

Now that the cat’s out of the bag you can use one of these servers on ANY chat program for Yahoo! Chat and be completely unbootable only as long as there’s no local program flaws in your choice of chat program. Our BDP option is a TCP window scale option (at the socket level) plus a randomization of these servers (from the pool of protected servers).

Who deserves to be credited solely for this discovery? Venom, Brock and myself. Venom/Mike made me aware of the fact that certain people weren’t affected by the buffer boot exploit. After looking into a couple of things I logically deduced all the complexities down to the chat servers themselves that are providing this type of protection for you.

——————————————————————————————

If you head over to the YTunnelPro forums make her aware that it was Adam , Venom and Brock who discovered this feature. Its not nice others using the feature and taking credit for somebody elses work.

catch up on latest information here http://forum.ytkpro.com/viewtopic.php?t=3709

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • bodytext
  • del.icio.us
  • Reddit
  • Spurl
  • Technorati

If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!


This entry was posted on Saturday, May 3rd, 2008 at 8:55 pm and is filed under Yahoo! Messenger. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.