Lucene search
HistoryJul 02, 2003 - 4:00 a.m.
CVE-2003-0397
cve-2003-0397
buffer overflow
fasttrack
kazaa
packet 0' death
security vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8 High
AI Score
Confidence
High
0.052 Low
EPSS
Percentile
93.1%
Buffer overflow in FastTrack (FT) network code, as used in Kazaa 2.0.2 and possibly other versions and products, allows remote attackers to execute arbitrary code via a packet containing a large list of supernodes, aka “Packet 0’ death.”
Affected configurations
Node
sharman_networkskazaaMatchv2.0.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| sharman_networks:kazaa | sharman networks kazaa | eq | v2.0.2 |
References
Social References
More
Related
nessus
nessus
FastTrack (FT) Crafted Packet Handling Remote Overflow
2003-09-22 00:00:00
cvelist
cvelist
CVE-2003-0397
2003-06-11 04:00:00
nvd
nvd
CVE-2003-0397
2003-07-02 04:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8 High
AI Score
Confidence
High
0.052 Low
EPSS
Percentile
93.1%
Related for CVE-2003-0397