Vulnerability Description
fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, which pops up new windows per message.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fasttrack | Kazaa | 1.2 |
| Grokster | Grokster | 1.3 |
| Music City Networks | Morpheus | 1.3 |
References
- http://marc.info/?l=bugtraq&m=101441689224760&w=2
- http://www.iss.net/security_center/static/8273.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/4122PatchVendor Advisory
- http://marc.info/?l=bugtraq&m=101441689224760&w=2
- http://www.iss.net/security_center/static/8273.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/4122PatchVendor Advisory
FAQ
What is CVE-2002-0314?
CVE-2002-0314 is a vulnerability with a CVSS score of 5.0 (MEDIUM). fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, which...
How severe is CVE-2002-0314?
CVE-2002-0314 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0314?
Check the references section above for vendor advisories and patch information. Affected products include: Fasttrack Kazaa, Grokster Grokster, Music City Networks Morpheus.