KazaaLite/Kazaa Backdoor
Page 1 of 2 12 LastLast
Results 1 to 10 of 20

Thread: KazaaLite/Kazaa Backdoor

  1. #1

    KazaaLite/Kazaa Backdoor


    Now ive heard about a backdoor in kazaa lite and/or all other [gloworange]KAZAA[/gloworange] products. What it is suppost to do is allow a user to connect to a [gloworange]Kazaa/Kazzalite[/gloworange] User's [glowpurple]"My Shared Folder"[/glowpurple] simply by using thier IP in and addressbar. Then a belive a backbutton or something is displayed and a user caan click back to move back a folder frm the [glowpurple]MY Shared Folder[/glowpurple] . This backdoor is suppost to allow all user on [gloworange]kazaa[/gloworange] to access the entire C Drive of another User. I would Like To know If This is true and/or if there is a way to protect yourself w/ a firewall. PLEASE HELP

  2. #2
    Junior Member
    Join Date
    Aug 2003
    Posts
    28
    never heard of it.

    you used to be able to browse users shared folders by typing they ip addy and port in the address bar,but nothing else,never access they C drive unless they have it shared.lol
    \"it is better to stay silent and appear stupid then to speak and remove all doubt\"


  3. #3
    Banned
    Join Date
    Jul 2003
    Posts
    325
    Yup, it worked. If I share just a folder, you see the contents of the folder.

    If you share "c:\" you get the contents of "c:\" but are unable to browse subdirectories.

    Here is a screenie:

  4. #4
    IS the page that is displayed when you put in their IP a page generated by Kazaa?

  5. #5
    Banned
    Join Date
    Jul 2003
    Posts
    325
    IS the page that is displayed when you put in their IP a page generated by Kazaa?
    Yes, KaZaA is a server and client software, so yes, the page is displayed from the KaZaA server and everything is indexed that you specified to share. Kinda like an index page that is returned to a browser when browsing FTP or a web site directory. If you type

    http://123.456.789:kazaaport then you will see the contents of what you shared. I am sure if there is a way to share your files then there can be ways to explore the rest of sombody's computer if smart and crafty enough, but too bad I am not crafty or smart.

    As for KaZaA being a "backdoor" I have not seen anything can can be construed as a backdoor, but if somebody were to decompile the software and add extra code to add some kind of extra "functionality" would not be extremely difficult to an experinced programmer or reverse engineer.

  6. #6
    would this be like what music cpmpanys use to messup your songs and/or view your songs?

  7. #7
    Banned
    Join Date
    Jul 2003
    Posts
    325
    heh, I din't know. I can think of several ways. Simply download some songs, grab the IP and send the IP to be subpenaed. As for messing songs up, it would be easy to simply create a bogus file and share it. As for messing up "your songs" directly, I do not know if you can remotely alter files.

  8. #8
    i would like to know if the page that is diaplayed when you visit the users IP can be alterend? Like maybe it is located in a DLL or something on my computer.

  9. #9
    Banned
    Join Date
    Jul 2003
    Posts
    325
    I do not know. Open a debugger and find out.

  10. #10
    Banned
    Join Date
    Jul 2003
    Posts
    325
    goozle, whatever you say.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •