Results 1 to 2 of 2

Thread: kazaa Remote Integer Overflow

  1. January 19th, 2005, 09:18 PM #1
    Tedob1
    Tedob1 is offline
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,785

    kazaa Remote Integer Overflow

    Versions: kazaa lite k++(probably all others too...)

    Platforms: Windows

    Bug: Sig2Dat Protocol Remote Integer Overflow and
    Denial Of Service by creating files in arbitrary locations


    Kazaa is currently the world’s most common P2P file sharing application.
    When installing Kazaa a new protocol is installed named “sig2dat”.
    This protocol contain an integer overflow vulnerability which may cause
    a crash and may allow remote execution of code. There is another
    vulnerability in the “File:” parameter which allows creating files in
    arbitrary locations and committing Denial Of Service.

    Details
    i think we're all going to be very busy especially if this effects ALL or even a few p2p apps....wont be long! :-(
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”
    Reply With Quote Reply With Quote
  2. January 21st, 2005, 03:18 AM #2
    dmorgan
    dmorgan is offline
    Senior Member
    Join Date
    Dec 2004
    Posts
    320
    Limewire!!!
    No spyware ( that I know of )
    The fool doth think he is wise, but the wiseman knows himself to be a fool - Good Ole Bill Shakespeare
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules