MidnightBSD

Advisories for kazaa

CVE-2002-2306 HIGH

Sharman Networks KaZaA Media Desktop 1.7.1 allows remote attackers to cause a denial of service (CPU consumption) by sending several large messages.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
kazaa kazaa_media_desktop 1.7.1
CVE-2003-1283 HIGH

KaZaA Media Desktop (KMD) 2.0 launches advertisements in the Internet Explorer (IE) local security zone, which could allow remote attackers to view local files and possibly execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
kazaa kazaa_media_desktop 2.0
CVE-2003-1395 HIGH

Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
kazaa kazaa_media_desktop 2.0
kazaa kazaa_media_desktop 2.0.2
CVE-2004-2433 HIGH

Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6, allows remote attackers to execute arbitrary code via a long bstrFilepath parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
kazaa kazaa_media_desktop 1.3.1
grokster grokster 1.3.3
altnet altnet_download_manager 4.0.0.4
kazaa kazaa_media_desktop 2.0.2
kazaa kazaa_media_desktop 1.3
kazaa kazaa_media_desktop 1.3.2
grokster grokster 1.3
kazaa kazaa_media_desktop 2.6.4
altnet altnet_download_manager *
kazaa kazaa_media_desktop 2.0
kazaa kazaa_media_desktop 1.6.1
grokster grokster 2.6