Vulnerabilities > CVE-2002-0314 - Denial Of Service vulnerability in FastTrack P2P Technology Message Service

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

fasttrack

grokster

music-city-networks

NVD

Published: 2002-06-25

Updated: 2016-10-18

Summary

fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, which pops up new windows per message.

Vulnerable Configurations

Part	Description	Count
Application	Fasttrack Fasttrack Kazaa 1.2 Fasttrack Kazaa 1.3 Fasttrack Kazaa 1.3.3 Fasttrack Kazaa 1.4	4
Application	Grokster Grokster Grokster 1.3 Grokster Grokster 1.3.3	2
Application	Music_City_Networks Music City Networks Morpheus 1.3 Music City Networks Morpheus 1.3.3	2

References

http://marc.info/?l=bugtraq&m=101441689224760&w=2
http://www.iss.net/security_center/static/8273.php
http://www.securityfocus.com/bid/4122