CVE-2002-0315

fasttrack p2p, as used in (1) KaZaA, (2) grokster, and (3) morpheus allows remote attackers to spoof other users by modifying the username and network information in the message header.

Published: Jun 25, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0315
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
fasttrack / kazaa	1.2	1.2.x
fasttrack / kazaa	1.5	1.5.x
music_city_networks / morpheus	1.3	1.3.x
fasttrack / kazaa	1.4	1.4.x
grokster / grokster	1.3	1.3.x
music_city_networks / morpheus	1.3.3	1.3.3.x
fasttrack / kazaa	1.3.3	1.3.3.x
fasttrack / kazaa	1.3	1.3.x
grokster / grokster	1.3.3	1.3.3.x

http://marc.info/?l=bugtraq&m=101441689224760&w=2
http://www.iss.net/security_center/static/8272.php
http://www.securityfocus.com/bid/4121

Vulnerability Database

CVE-2002-0315