Lucene search

Kaspersky LabKLA10324

HistoryJan 31, 2006 - 12:00 a.m.

KLA10324 ACE vulnerability in Shareaza

2006-01-3100:00:00

Kaspersky Lab

threats.kaspersky.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.095 Low

EPSS

Percentile

94.6%

JSON

Detect date:

01/31/2006

Severity:

Critical

Description:

Integer overflows were found in Shareaza. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed packet.

Affected products:

Shareaza version 2.2.1.0

Solution:

Update to latest version

Impacts:

ACE

Related products:

Shareaza

CVE-IDS:

CVE-2006-04747.5Critical

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0474

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/product/Shareaza/

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.095 Low

EPSS

Percentile

94.6%

JSON

Related for KLA10324