CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
79.9%
fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, which pops up new windows per message.
Vendor | Product | Version | CPE |
---|---|---|---|
fasttrack | kazaa | 1.2 | cpe:2.3:a:fasttrack:kazaa:1.2:*:*:*:*:*:*:* |
fasttrack | kazaa | 1.3 | cpe:2.3:a:fasttrack:kazaa:1.3:*:*:*:*:*:*:* |
fasttrack | kazaa | 1.3.3 | cpe:2.3:a:fasttrack:kazaa:1.3.3:*:*:*:*:*:*:* |
fasttrack | kazaa | 1.4 | cpe:2.3:a:fasttrack:kazaa:1.4:*:*:*:*:*:*:* |
grokster | grokster | 1.3 | cpe:2.3:a:grokster:grokster:1.3:*:*:*:*:*:*:* |
grokster | grokster | 1.3.3 | cpe:2.3:a:grokster:grokster:1.3.3:*:*:*:*:*:*:* |
music_city_networks | morpheus | 1.3 | cpe:2.3:a:music_city_networks:morpheus:1.3:*:*:*:*:*:*:* |
music_city_networks | morpheus | 1.3.3 | cpe:2.3:a:music_city_networks:morpheus:1.3.3:*:*:*:*:*:*:* |