AOL/AIM Exploits

Date 1998Founded unknownSubmitted By GLSource AOL-Files.com/FDO-Files.com Archive By going to kw:names and typing “blahblahAO” and pressing enter, it will return something like “blahblahAO19837″ and “AO1″ is a restricted prefix. You could also make TO5 in the same manner.

Date 2000Founded UnknownSubmitted By PHATSource AOL-Files.com/FDO-Files.com Archive Color and elite profiles are still very popular today, almost every teenager with AOL has “elite” colors in their profile. Color profiles started out as normal HTML codes used in profiles for font formatting and background color, etc. Then, AOL saw the danger these “harmless” profile codes presented when someone came up with the freezing profile code. AOL killed most of the…

Date 2000Founded unknownSubmitted By Contributed By: PHAT Addition:ScSaSource AOL-Files.com/FDO-Files.com Archive The Con/Con punt is actually a Windows exploit that can done through AOL. It only affects users in chatrooms with their sounds turned on. To do it, you simply sent “{S /con/con” to the chat and everyone with their sounds turned on will get a “blue screen” error. However, AOL did not like this punt because grandma and newbies…

Date July 2000Founded Chris, Nore and Hyrdro – Updated 2.8.01Submitted By Contributed By: Tau Correction: Nore and HydroSource AOL-Files.com/FDO-Files.com Archive This exploit allowed CL pin numbers to be cracked via an AOL web site. Once the pin number was cracked the people involved could call AOL and have the password reset. Also, after entering the correct pin number the billing information on the accounts could be changed. Chris, the…

Date 2000Founded Rikky?Submitted By Tau and Pure (who submitted similar information)Source AOL-Files.com/FDO-Files.com Archive Dead, aka “ded”, screen names are screen names that can be accessed even though they technically belong to no account. The drawbacks are that you cannot send mail from them and that it takes a few steps to do. Here you will learn how to do it in 3 easy steps. No special tools are required.…

Date Late 2000Founded TauSubmitted By TauSource AOL-Files.com/FDO-Files.com Archive “AOL Quick Checkout allows you to store credit card and shipping information at a secure site on AOL’s computers. That way, when you’re shopping at merchants that offer AOL Quick Checkout, you can checkout quickly and safely without having to manually enter your payment and shipping information each time,” according to the Help section at AOL Quick Checkout. While scanning tokens…

Date 2000Founded unknownSubmitted By PHATSource AOL-Files.com/FDO-Files.com Archive AIMers were able to be punted offline with ease. The trick was simple enough. Send the AIM victim an Instant Message with the message &.#770;. The user was immediately punted from AIM and often even had to restart. The string &.#771; turned their screen fuzzy. The release of AIM 4.1? fixed this punt method.

Date December 10, 2000Founded EvergraceSubmitted By O0O and rogersSource AOL-Files.com/FDO-Files.com Archive AOL added a new feature to the kw: Names sub-account creation proccess. If a screen name you wanted was unavailable a form would come up asking you to enter three words and then AOL would automatically make an SN for you based on these three words. The n* token which ran this process did not have a restricted…

Date Date: Fall 2000Founded UnknownSubmitted By GLSource AOL-Files.com/FDO-Files.com Archive Occasionaly the certain parts of the AIM server would go down which allowed suspended AIMs to be signed onto. An easy way to tell if the server was down was to select the “Update email” option on the AIM client. If it came back “unknown” then it would be possible to sign onto any suspended AIM that you had the…

Date November 2000Founded Language code atom discovered by BMBSubmitted By O0OSource AOL-Files.com/FDO-Files.com Archive BMB was able to port the “as” token exploit over to the PC by finding an atom which set the language code. The atom was uni_next_atom_typed. Placed within an FDO script this allowed PCers to make indented screen names and hijack AIM accounts.

Date Early 2000Founded HypahSubmitted By O0O and HypahSource AOL-Files.com/FDO-Files.com Archive Using the same language code principles he discovered when finding the Aa token exploit, Hypah was able to figure out a way to make 2 character indented screen names. Although, at first Hypah figured out you could hijack AIM screen names doing this. During the account creation proccess the as token, which sets your screen name, did not check…