vissha Posted June 14, 2016 Share Posted June 14, 2016 Telegram Crammed: Hackers Find Way To Send Massive Messages Mobile data annihilated. Researchers have found what they say is a flaw in the Telegram that allows messages of any size to be sent. The unpatched flaw demonstrated in a proof-of-concept shows how attackers can send messages of any size over the popular encrypted communications app by skirting restrictions. Telegram has been contacted for comment. Iranian researcher Sad Ghaf did not pinpoint the flaw in a bid to prevent others exploiting it, and says he could not find a way to report the flaw to Telegram. "Due to a programming error [a] sender can gain control of the size of messages and send them with arbitrary length," Ghaf says. "On the other side [the] victim would receive all incoming messages even if they are too long." Ghaf and his fellow researchers were able to send a message with 30000 bytes, exceeding the 4096 byte limit, and another which was empty breaching the one byte minimum. Messages can be sent to anyone without pre-authorisation meaning attackers could drain victim's mobile data allowances, and fill up phone storage with junk data. The application is the most popular encrypted communications platform in Iran, Ghaf says Source Link to comment Share on other sites More sharing options...
Sylence Posted June 15, 2016 Share Posted June 15, 2016 Quote he could not find a way to report the flaw to Telegram. https://telegram.org/support Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.