CVE Vulnerabilities

CVE-2004-2433

Published: Dec 31, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6, allows remote attackers to execute arbitrary code via a long bstrFilepath parameter.

Affected Software

Name Vendor Start Version End Version
Altnet_download_manager Altnet * 4.0.0.2 (including)
Altnet_download_manager Altnet 4.0.0.4 (including) 4.0.0.4 (including)
Grokster Grokster 1.3 (including) 1.3 (including)
Grokster Grokster 1.3.3 (including) 1.3.3 (including)
Grokster Grokster 2.6 (including) 2.6 (including)
Kazaa_media_desktop Kazaa 1.3 (including) 1.3 (including)
Kazaa_media_desktop Kazaa 1.3.1 (including) 1.3.1 (including)
Kazaa_media_desktop Kazaa 1.3.2 (including) 1.3.2 (including)
Kazaa_media_desktop Kazaa 1.6.1 (including) 1.6.1 (including)
Kazaa_media_desktop Kazaa 2.0 (including) 2.0 (including)
Kazaa_media_desktop Kazaa 2.0.2 (including) 2.0.2 (including)
Kazaa_media_desktop Kazaa 2.6.4 (including) 2.6.4 (including)

References