Lucene search

MitreCVE-2002-0314

HistoryJun 25, 2002 - 4:00 a.m.

CVE-2002-0314

2002-06-2504:00:00

mitre

web.nvd.nist.gov

cve-2002-0314

fasttrack p2p

dos

kazaa

grokster

morpheus

memory exhaustion

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.007

Percentile

79.9%

JSON

fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, which pops up new windows per message.

Affected configurations

Nvd

Node

fasttrackkazaaMatch1.2

fasttrackkazaaMatch1.3

fasttrackkazaaMatch1.3.3

fasttrackkazaaMatch1.4

grokstergroksterMatch1.3

grokstergroksterMatch1.3.3

music_city_networksmorpheusMatch1.3

music_city_networksmorpheusMatch1.3.3

VendorProductVersionCPE
fasttrackkazaa1.2cpe:2.3:a:fasttrack:kazaa:1.2:*:*:*:*:*:*:*
fasttrackkazaa1.3cpe:2.3:a:fasttrack:kazaa:1.3:*:*:*:*:*:*:*
fasttrackkazaa1.3.3cpe:2.3:a:fasttrack:kazaa:1.3.3:*:*:*:*:*:*:*
fasttrackkazaa1.4cpe:2.3:a:fasttrack:kazaa:1.4:*:*:*:*:*:*:*
grokstergrokster1.3cpe:2.3:a:grokster:grokster:1.3:*:*:*:*:*:*:*
grokstergrokster1.3.3cpe:2.3:a:grokster:grokster:1.3.3:*:*:*:*:*:*:*
music_city_networksmorpheus1.3cpe:2.3:a:music_city_networks:morpheus:1.3:*:*:*:*:*:*:*
music_city_networksmorpheus1.3.3cpe:2.3:a:music_city_networks:morpheus:1.3.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fasttrack	kazaa	1.2	cpe:2.3:a:fasttrack:kazaa:1.2:::::::*
fasttrack	kazaa	1.3	cpe:2.3:a:fasttrack:kazaa:1.3:::::::*
fasttrack	kazaa	1.3.3	cpe:2.3:a:fasttrack:kazaa:1.3.3:::::::*
fasttrack	kazaa	1.4	cpe:2.3:a:fasttrack:kazaa:1.4:::::::*
grokster	grokster	1.3	cpe:2.3:a:grokster:grokster:1.3:::::::*
grokster	grokster	1.3.3	cpe:2.3:a:grokster:grokster:1.3.3:::::::*
music_city_networks	morpheus	1.3	cpe:2.3:a:music_city_networks:morpheus:1.3:::::::*
music_city_networks	morpheus	1.3.3	cpe:2.3:a:music_city_networks:morpheus:1.3.3:::::::*

References

marc.info/?l=bugtraq&m=101441689224760&w=2

www.iss.net/security_center/static/8273.php

www.securityfocus.com/bid/4122

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.007

Percentile

79.9%

JSON

Related for CVE-2002-0314