Vulnerabilities > CVE-2004-2433 - Remote Buffer Overflow vulnerability in Altnet ADM ActiveX Control

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

altnet

grokster

kazaa

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6, allows remote attackers to execute arbitrary code via a long bstrFilepath parameter.

Vulnerable Configurations

Part	Description	Count
Application	Altnet Altnet Altnet Download Manager 4.0.0.2 Altnet Altnet Download Manager 4.0.0.4	2
Application	Grokster Grokster Grokster 1.3 Grokster Grokster 1.3.3 Grokster Grokster 2.6	3
Application	Kazaa Kazaa Kazaa Media Desktop 1.3 Kazaa Kazaa Media Desktop 1.3.1 Kazaa Kazaa Media Desktop 1.3.2 Kazaa Kazaa Media Desktop 1.6.1 Kazaa Kazaa Media Desktop 2.0 Kazaa Kazaa Media Desktop 2.0.2 Kazaa Kazaa Media Desktop 2.6.4	7

Summary

Vulnerable Configurations

References