Yahoo! Messenger Protocol Tutorial

tansqrx

Mar 27 2006, 11:31 PM

Before any program can utilize the Yahoo! network, the client must sign-in with a username and password. The order of events used to sign-in is shown in Figure 17. Not all events are necessary to become available on the Yahoo! network and the optional steps are denoted by an “*.”

IPB Image

Figure 17 - Sign-In Sequence

The first step to signing-in is to send a verify packet, Yahoo_Verify, to the Yahoo! servers to see if a network path is available. The packet structure is shown in Figures 18 and 19.

IPB Image

Figure 18 - Yahoo! Verify to Server

IPB Image

Figure 19 - Yahoo! Verify from Server

Once communication is verified, an authorization, Yahoo_Auth, packet is sent. The packet that is sent to the server contains the username that requests service. The server responds with a challenge string and session ID. The session ID received from the server and will stay with each packet until communications have ended with the server. The authorization phase is shown in Figure 20 and 21.

IPB Image

Figure 20 - Yahoo! Authorization to Server

http://www.ycoderscookbook.com/images/tuto..._AuthServer.gif
Figure 21 - Yahoo! Authorization from Server

Once the client receives the challenge string, the client will then add the value of the challenge string to the password and compute a MD5 hash. The resulting hash is split into two data fields, 6 and 96, and is sent to the server. Along with the password hash, other system data such as the client version is sent via the Authorization Response packet, Yahoo_AuthResp. The AuthResp packet structure is shown in Figure 22.

IPB Image

Figure 22 - Yahoo! Authorization Response to Server

After a valid password hash has been received from the client, a particular username is considered to be logged in and no other information is need from the client. In most cases, just being logged in is not very useful; therefore, after the AuthResp packet is sent from the client, the server sends the buddy list for the particular user. The buddy list is contained in the Yahoo_List packet.
The Yahoo_List packet is the first packet which may contain multiple YMSG headers and may possibly be sent in multiple packets. The structure of the buddy list packet depends upon the number of buddies in the list, and the number of ignored users. If multiple headers or packets are used then the status of the packet will be sent to NotInOffice until the last packet is received. The most important field includes 87 for the buddy list and 88 for the ignored users. Figure 23 shows one possible buddy list packet structure.

IPB Image

Figure 23 - Yahoo! Buddy List from Server

After the buddy list packet is received from the Yahoo! server, another packet immediately follows. This packet is a Yahoo_Ping and contains information as to who is online in the buddy list. Like the Yahoo_List information, the Yahoo_Ping information may span multiple packets, headers, or both. Information about each buddy is contained
within a structure consisting of their username, away message, and other system information. An additional header may also be sent indicating the presence of unread email through the Yahoo! mail servers.
At the end of the sign in process the client and server will send several non-essential messages. A sample of these may include the cosmetic skin type of the client, updates to LaunchCast Radio, stock quotes, weather, and the Yahoo! insider. The Yahoo! update program also runs in parallel with the login to check for any program updates.

http://www.ycoderscookbook.com/

Recent Queries:-

authorization required yahoo messenger - 42.07 hr back. (1)
how long does yahoo messenger server give to respond with packet - 45.27 hr back. (1)
yahoo protocol challenge - 45.74 hr back. (1)
yahoo protocol 96 - 55.71 hr back. (1)
yahoo messenger protocol authresp - 199.54 hr back. (1)
tutoriale messenger 8 - 201.62 hr back. (1)
yahoo!messenger 8 - 293.21 hr back. (1)
tutorial sign in yahoo messenger - 307.79 hr back. (1)
help yahoo messenger authorization required - 336.69 hr back. (1)
php yahoo protocol challenge string - 372.54 hr back. (1)
yahoo video protocol - 449.71 hr back. (1)
yahoo messenger 8 not signing in - 450.70 hr back. (1)
"yahoo messenger protocol" - 469.93 hr back. (1)

Similar Topics

Keywords : Yahoo33 Messenger Protocol Signing

Messenger 9.0.0.234 Released - (4)
Yahoo! Messenger 9 Beta Preliminary Review - (15)
I have been using the latest version of Yahoo! Messenger for over two weeks now and I would like to
give a quick review of it. Overall this is not a major change from what I know as Messenger. As it
has been said before, this is evolutionary not revolutionary. From what I can see there are no new
features (at least none that I would use), the user interface (UI) is prettier, and it looks like
there have been some bug fixes; that’s it. Under the hood there are some things to note. The
current version of the YSMG protocol with version 8 is 15 and Messenger 9 has bee...

Yahoo! Messenger Firewall Changes - (0)

Yahoo! announced on their official Messenger blog (ymessengerblog.com) that unspecified changes will
be made to the way firewalled users will use Messenger. The article mentions that only users that
are using version 8.x and signed in from behind a firewall will be affected. An official message
will be sent by Yahoo! urging users to upgrade to the latest 9.x version of the software. From a
programming standpoint this will most likely only affect Messenger operations that require a peer to
peer (p2p) connection such as file sharing. When performing a peer to peer oper...

Yahoo! Messenger Power User - (2)

I just received a very weird message when I logged into Messenger today. It said “Congratulations,
you are a Power User!” The pop-up was in its separate window similar to the annoying Insider and
had a Learn More, Choose Your Icon, and No Thanks button (the Learn More button didn’t work). After
doing a quick Google search
(http://help.yahoo.com/l/us/yahoo/messenger/messenger9/pwrusr/pwrusr-01.html)
(http://messenger.yahoo.com/powerusers) I found that this thing does really exist and wasn’t some ad
pop-up that somehow got past my defenses. Here are a few of the “benef...

Yahoo! Messenger Challenge Response Algorithm - (11)

Here is a question that came into my forum and I thought it needed wider coverage. Q: Can you
explain the Yahoo! Messenger challenge response algorithm? The Yahoo! Messenger challenge response
sequence is quite complex and unique to Yahoo! The challenge comes from the server and is then run
through an algorithm on the client. When looking at the challenge and response in ASCII view it
almost looks like a mathematical equation but it is not. This complex algorithm came from several
years ago when the username and password was sent in plain text over the network an...

Yahoo! Messenger Protocol Tutorial - Part 2 - (2)

Part 2 - History The need for humans to communicate faster and more efficiently has been one of the
driving forces behind the Internet. Not since the invention of the telephone has communications
between humans been more readily available. The communication power of the Internet began to take
shape in its infancy with one of the first Internet applications, email. While the Internet was
still ARPANET and with only four links, the first email message was sent by Ray Tomlinson in 1971.
The first message consisted of the text “Testing 1-2-3” and did not contain any of th...

Yahoo! Messenger Talking To Google Talk? - (7)

While Yahoo! was off fighting Microsoft, they made some deals with Google to put a slightly tainted
taste into the merger deal. The most notable one was an ad revenue “trial” where Google would serve
the ads on Yahoo! pages in return for a very favorable share of the profit. Over the past week it
appears that the trials were very successful and Yahoo! has agreed to a more permanent deal with
Google that would continue the deal, pending any anti-trust issues. Mixed up in this agreement is a
paragraph that indicates future interoperability between the two IM platforms (...

It Still Looks Like Microsoft Messenger May Still Happen - (9)

Over the past week the talks of Microsoft buying Yahoo! has not diminished. Recently Slahsdot
(http://tech.slashdot.org/article.pl?no_d2=1&sid=08/04/07/236215) published a note that points to
both a Microsoft press release
(http://www.microsoft.com/Presspass/press/2008/apr08/04-05LetterPR.mspx) and the Yahoo! reply
(http://yhoo.client.shareholder.com/press/releasedetail.cfm?ReleaseID=303369). The bottom line is
that Yahoo! hasn’t said no, they just want more money. In my mind the simple fact that Microsoft
has not backed down after the initial offer means they will se...

Hacking Yahoo! Messenger - (12)

lately i've been reading some way of hacking yahoo messenger. youtube, hacking forums, and etc,
i've been there to ask and to learn how to hacking it. but i've been wondering every now and
then while reading and watching those posted videos and scripts, but they are not working. For real,
is there any way to hack yahoo messenger?...

Latest Yahoo! Vulnerability Appears To Be A Moving Target For Messenger - (2)

I have been aware of the latest Yahoo! Jukebox and until recently Messenger exploits for about a
week. Starting on the 3rd of February, three critical vulnerabilities were posted for datagrid.dll
and mediagrid.dll which are part of the Yahoo! Jukebox offering
(http://www.securityfocus.com/bid/27578, http://www.securityfocus.com/bid/27579 ,
http://www.securityfocus.com/bid/27590) . The reason that I waited so long to post this is because
the details were inconsistent and it didn’t add up to me. The versions of Messenger that were
listed as vulnerable are absolutely a...

Yahoo! Protocol: Part 11 - Booters Introduction - (4)

For whatever reason, certain users feel the need to harass other citizens of the internet. The
following is a typical scenario of what may cause a Yahoo! booter to be used. Bob is an average
computer user that enjoys talking to his friends over Yahoo! Messenger. One day, Bob goes into a
Yahoo! chat room to discuss the topics of the day. After several minutes of intellectual discussion
with members of the chat room, Jane joins the room. From the very beginning, it is apparent that
Jane is in the room to cause trouble and starts a flame war. Bob and Jane quickly star...

Tapping Yahoo! Messenger Phone Conversations - (4)

The latest post on the official Yahoo! Messenger blog appears to be out of place to me
(http://www.ymessengerblog.com/blog/2008/01/04/recording-yahoo-messenger-calls/). It is not part of
the usual suspects of promising unneeded features or unabashed promotion of Messenger. Instead it
is a fairly useful commentary on how to record a Messenger phone session using third party
applications. The Yahoo! Messenger blog references a New York Times article
(http://www.nytimes.com/2008/01/03/technology/personaltech/03ASKK-002.html?_r=1&oref=slogin) where a
user asked if there i...

“discovr” New Friend With Yahoo! Messenger - (2)

The latest blog post from the Yahoo! Messenger development teams is about Discovr, a proposed new
way of sharing Messenger contacts. As is stands Messenger is a closed social community. It is very
hard to discover new buddies unless you start trolling around the chat rooms or have a buddy in real
life. Discovr is a method to make Messenger more like Facebook or Myspace where everyone knows who
your friends are. Discovr came from Hack Days, a common occurrence at Yahoo! that encourages
different departments to throw out new ideas. (To think Yahoo! actually names it H...

Yahoo! Messenger Author’s New Security Book - (0)

There’s not much meat or new content in this post but I did find it rather humorous. Richard Sinn
is apparently the software security engineer for Yahoo! Messenger and he now has a new book out
entitled Software Security Technologies: A Progammatic Approach
(http://blog.messenger.yahoo.com/blog/2007/10/23/kudos-for-the-team/)(http://www.amazon.com/dp/14283
1945X?tag=open0f-20&camp=14573&creative=327641&linkCode=as1&creativeASIN=142831945X&adid=1435SV1WH79
S425NG1ZF&). The price is high for a paperback at $87.95 USD but I may read it once the price drops
or there are use...

Minor Updates To Yahoo! Messenger Web - (1)

The Yahoo! Messenger development team announced that there have been a few minor upgrades to the web
version of Yahoo! Messenger
(http://blog.messenger.yahoo.com/blog/2007/09/24/yahoo-messenger-for-the-web-new-release/). From
what I can see nothing major has been added except for SMS to mobile users and a few new languages
for India. Apparently the web version of Messenger has taken off in India as nine new languages are
added for that region. You add the support for the biggest demand....

Messenger Mail Bug? - (2)

Over the past few days (It is September 23, 2007 now) I have noticed what appears to be a bug in
Yahoo! Messenger concerning unread mail. No matter if there are unread messages or not, Messenger
always reports new mail. I have even gone through the trouble of deleting EVERYTHING from my mail
account and it still pops up. The same behavior happens on Yahelite and Pidgen so it is a server
side bug. Yahoo! has been upgrading their server so I would expect that this is a side effect of
some of the upgrades. Of course this could be confined to me so let me know if you ar...

The Yahoo! Messenger Zero-day For The Month Of August - (1)

Yahoo! Messenger is once again in the news for all the wrong reasons. This time it is a heap
overflow in the webcam component. The news was apparently first exposed my McAfee in a blog post at
http://www.avertlabs.com/research/blog/ind...enger-zero-day/ . A second post at
http://www.avertlabs.com/research/blog/ind...er-webcam-0day/ goes into more detail explaining that
you shouldn’t accept unknown webcam invites and to possibly firewall port 5100. Security Focus has
also issued an alert at http://www.securityfocus.com/bid/25330/info but they only classify is as ...

Two For The Price Of One: New Messenger Exploit And A New Way To Get It - (7)

A new service run by WSLabi (http://www.wslabi.com/wabisabilabi/home.do?) touts itself as the new
eBay of vulnerability researchers (http://www.securityfocus.com/brief/542?ref=rss). From many years
there has been a battle between security researchers and software publishers over the price or value
of an exploit. As a researcher myself I know how many countless hours go into finding and
developing material that is useful in making an exploit. I could easily turn it into a full time
job. I do it for a hobby but what if someone wants to make it into a full time job? I...

New Yahoo! Web Messenger - (12)

Today Yahoo! announced a whole new way to communicate using Messenger. It’s the “all-new Web-based
Yahoo! Instant Messenger.” Ohh wait a minute, wasn’t there already a web version of Yahoo!
Messenger? Despite the fact that the official press release
(http://yodel.yahoo.com/2007/05/02/yahoo-messenger-hold-the-download) makes this out to be something
completely new, a web version of Messenger has been around for years. I of course will be the first
to admit that the old version was so bad that I would like to forget about it too. With the bad
taste of my previous expe...

Yahoo! Protocol: Part 19 - Conclusion - (0)

Throughout this tutorial the main objectives has been covered. Part 12 describes the exact packet
structure generated by the shared files boot. Part 15 shows that it is possible to write a booter
from the ground up only using information gathered through a network sniffer. Parts 16-18 shows that
a booter performs its work by creating a timing fault that in turn cases the stack to be corrupted
and an access violation generated. Part 18 also explores why injection of arbitrary code is not
possible using current booter technology. In my closing opinion, I believe that Yah...

Yahoo! Protocol: Part 18 - Arbitrary Code Execution - (0)

The holy grail of any exploit is to be able to run arbitrarily injected code. If code from the
attacker can be run on the target system, in most cases the attacker just gained full control of the
target system. An attacker can inject previously tested shellcode onto the victim machine and at the
very least spawn a command prompt. The primary focus of this paper is to take the act of booting
from annoying DoS attacks to much more sophisticated and dangerous remote code execution attacks.
To analyze and follow the execution of Yahoo! Messenger, break points and analysis o...

Yahoo! Protocol: Part 17 - Crash - (0)

The results from a crash can be simply summarized in the following statement: “Access violation when
reading (00730079). In windows terms, an access violation occurs when a program tries to read
information from a protected area in memory or a section of memory that does not belong to that
particular program. In this case, Yahoo! Messenger tried to read the memory address 00730079. Table
2 shows the currently allocated memory areas for Messenger sorted by ascending address. Table
2 - Currently Allocated Memory Addresses It is seen that 00730079 is not included ...

Yahoo! Protocol: Part 16 - Assembly Analysis - (0)

Overview To truly understand why a booter or any other types of exploits function, an
investigator must have a look at the program’s source code. In the case of Yahoo! Messenger which is
a closed source program, I am forced to dive into the dark and sometimes mystical realm of assembly
debugging. By exploring the Yahoo! Messenger assembly code and the machine state at the time of a
crash I can reveal why, on the machine level, how a booter works. Perhaps more importantly, is it
possible to run arbitrary code from a remote attack. Tools In order to explore the asse...

Yahoo! Messenger Through Web - To be? Or not to be?!~ (6)

Hello guys, Glad to find here to ask my question, Iam came from here via google. I'm , for many
weeks, seeking for a solution that give me ability for connecting , sending and reciving, PM's
to Yahoo Messenger through web protocol I am proff in php, and now seeking for an easy way , not of
cource socket programming that is hard to implement and buggy , also not every where supported, to
establishing sessions and managing them through HTTP/1.1 , then I will write an application for i.e
auto responding, saving history on web, forwarding,managing and etc... i need ...

New Yahoo! Messenger Protocol Changes? - (4)

I first picked this up on Big Blue Ball in their newsletter
(http://www.bigblueball.com/forums/yahoo-messenger-news/39852-yahoo-drop-support-y-messenger-7-5-apr
il-2nd.html). QUOTE As of April 2nd, 2007, we will no longer offer customer support for
Yahoo! Messenger 7.0/7.5. We recommend that you upgrade to the latest version of Yahoo! Messenger.
We will keep these help pages available online should you continue to use this version and have
basic questions that these pages can answer. The administrators of Big Blue Ball speculate that
this may mean another proto...

Yahoo! Protocol: Part 15 - Yahoo! Trainer - (0)

Since the writing of this article the Yahoo! Trainer mentioned has gone through several revisions.
The original code may not fully function but can be found at
http://www.ycoderscookbook.com/Files/Yahoo Login Sockets.rar.. The current iteration of the trainer
is called YCC Trainer and can be found at http://www.ycoderscookbook.com/Files/YCC_Trainer.zip .
The latest version currently does not have all of the functionality of the first version but the
code has been rewritten to make it more understandable and a better learning tool. If reading from a
different site, al...

Yahoo! Protocol: Part 14 - Remote Code Execution? - (0)

Most of the research for these tutorials were created for a research paper that I wrote. It has
been a few years ago now but I believe that this information is still relevant. The purpose of this
paper was as follows: What is the communications protocol used by common booters?
Is it possible to build my own booter program? What causes, at the machine level, the
Yahoo! Messenger program to crash? Is it possible to inject arbitrary code using current
booter technology? In the finial form of this paper I created my own booter prog...

Yahoo! Messenger Plugin Sdk - (3)

I read this morning at theunofficialyahooweblog
(http://yahoo.weblogsinc.com/2006/06/19/yahoo-opens-up-messenger-to-3rd-party-plug-ins/) that Yahoo!
has just released a SDK for a plugin engine that will reside in the next version of Messenger. I
can’t wait to dig into this seemingly juicy morsel of Yahoo! fun. I’m not sure what all one can do
with the SDK yet but I will be sure to report what I find. The SDK can be found at
http://developer.yahoo.com/ . A list of already published plugins can be found at
http://us.gallery.yahoo.com/messenger . Does anyone have som...

Messenger Stealth Settings Bug? - (2)

I have been having problems with my stealth setting for about a week now. Apparently when I have
all users set to invisible it works fine. Also when I go available everything appears to work fine.
The problems is when I set a custom message all of a sudden the users that I have individually set
to offline can see me. I have not been able to reproduce the results myself but it is starting to
become a problem as people that I would rather not talk to IM me now. Anyone else run into this?
Is this another bug?...

Yahoo! Protocol: Part 13 - Disconnect And Proto D/c Boots - (0)

QUOTE(www.ycoderscookbook.com) Two other notable types of booter code exist, Disconnect Boot and
Proto D/C Boot. Many times boot code makers will mix in the shared files boot packet with these two
booters because the shared files code is more effective and reliable. A detailed discussion about
these two booters will now be given. The important facts to know is that they both work the same
way as the shared files boot, timing errors in the Yahoo! Messenger client causes a crash. All
three boot codes create a crash at the same memory address. The basic structure o...

Looking for yahoo, protocol, part, 8, sign

Yahoo! Messenger Protocol Tutorial - Part 8 (Signing-in)

Yahoo! Messenger Protocol Tutorial - Part 8 (Signing-in)