Results 1 to 2 of 2

Thread: kazaa Remote Integer Overflow

  1. #1
    Senior Member
    Join Date
    Nov 2001

    kazaa Remote Integer Overflow

    Versions: kazaa lite k++(probably all others too...)

    Platforms: Windows

    Bug: Sig2Dat Protocol Remote Integer Overflow and
    Denial Of Service by creating files in arbitrary locations

    Kazaa is currently the world’s most common P2P file sharing application.
    When installing Kazaa a new protocol is installed named “sig2dat”.
    This protocol contain an integer overflow vulnerability which may cause
    a crash and may allow remote execution of code. There is another
    vulnerability in the “File:” parameter which allows creating files in
    arbitrary locations and committing Denial Of Service.

    i think we're all going to be very busy especially if this effects ALL or even a few p2p apps....wont be long! :-(
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”

  2. #2
    Senior Member
    Join Date
    Dec 2004
    No spyware ( that I know of )
    The fool doth think he is wise, but the wiseman knows himself to be a fool - Good Ole Bill Shakespeare

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts