Lucene search

MitreCVE-2002-0315

HistoryJun 25, 2002 - 4:00 a.m.

CVE-2002-0315

2002-06-2504:00:00

mitre

web.nvd.nist.gov

information security

cve-2002-0315

fasttrack p2p

remote attack

user spoofing

nvd.

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.006

Percentile

79.5%

JSON

fasttrack p2p, as used in (1) KaZaA, (2) grokster, and (3) morpheus allows remote attackers to spoof other users by modifying the username and network information in the message header.

Affected configurations

Nvd

Node

fasttrackkazaaMatch1.2

fasttrackkazaaMatch1.3

fasttrackkazaaMatch1.3.3

fasttrackkazaaMatch1.4

fasttrackkazaaMatch1.5

grokstergroksterMatch1.3

grokstergroksterMatch1.3.3

music_city_networksmorpheusMatch1.3

music_city_networksmorpheusMatch1.3.3

VendorProductVersionCPE
fasttrackkazaa1.2cpe:2.3:a:fasttrack:kazaa:1.2:*:*:*:*:*:*:*
fasttrackkazaa1.3cpe:2.3:a:fasttrack:kazaa:1.3:*:*:*:*:*:*:*
fasttrackkazaa1.3.3cpe:2.3:a:fasttrack:kazaa:1.3.3:*:*:*:*:*:*:*
fasttrackkazaa1.4cpe:2.3:a:fasttrack:kazaa:1.4:*:*:*:*:*:*:*
fasttrackkazaa1.5cpe:2.3:a:fasttrack:kazaa:1.5:*:*:*:*:*:*:*
grokstergrokster1.3cpe:2.3:a:grokster:grokster:1.3:*:*:*:*:*:*:*
grokstergrokster1.3.3cpe:2.3:a:grokster:grokster:1.3.3:*:*:*:*:*:*:*
music_city_networksmorpheus1.3cpe:2.3:a:music_city_networks:morpheus:1.3:*:*:*:*:*:*:*
music_city_networksmorpheus1.3.3cpe:2.3:a:music_city_networks:morpheus:1.3.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fasttrack	kazaa	1.2	cpe:2.3:a:fasttrack:kazaa:1.2:::::::*
fasttrack	kazaa	1.3	cpe:2.3:a:fasttrack:kazaa:1.3:::::::*
fasttrack	kazaa	1.3.3	cpe:2.3:a:fasttrack:kazaa:1.3.3:::::::*
fasttrack	kazaa	1.4	cpe:2.3:a:fasttrack:kazaa:1.4:::::::*
fasttrack	kazaa	1.5	cpe:2.3:a:fasttrack:kazaa:1.5:::::::*
grokster	grokster	1.3	cpe:2.3:a:grokster:grokster:1.3:::::::*
grokster	grokster	1.3.3	cpe:2.3:a:grokster:grokster:1.3.3:::::::*
music_city_networks	morpheus	1.3	cpe:2.3:a:music_city_networks:morpheus:1.3:::::::*
music_city_networks	morpheus	1.3.3	cpe:2.3:a:music_city_networks:morpheus:1.3.3:::::::*

References

marc.info/?l=bugtraq&m=101441689224760&w=2

www.iss.net/security_center/static/8272.php

www.securityfocus.com/bid/4121

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.006

Percentile

79.5%

JSON

Related for CVE-2002-0315