CVE-2004-2433

Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6, allows remote attackers to execute arbitrary code via a long bstrFilepath parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:altnet:altnet_download_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:altnet:altnet_download_manager:4.0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:grokster:grokster:1.3:*:*:*:*:*:*:*
cpe:2.3:a:grokster:grokster:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:grokster:grokster:2.6:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:1.3:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:2.0:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:kazaa:kazaa_media_desktop:2.6.4:*:*:*:*:*:*:*

History

20 Nov 2024, 23:53

Type Values Removed Values Added
References () http://secunia.com/advisories/12446 - Patch, Vendor Advisory () http://secunia.com/advisories/12446 - Patch, Vendor Advisory
References () http://secunia.com/advisories/12456 - Vendor Advisory () http://secunia.com/advisories/12456 - Vendor Advisory
References () http://securitytracker.com/id?1011155 - () http://securitytracker.com/id?1011155 -
References () http://www.osvdb.org/9549 - () http://www.osvdb.org/9549 -
References () http://www.securityfocus.com/bid/11101 - Exploit, Patch () http://www.securityfocus.com/bid/11101 - Exploit, Patch
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/17221 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/17221 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:53


NVD link : CVE-2004-2433

Mitre link : CVE-2004-2433

CVE.ORG link : CVE-2004-2433


JSON object : View

Products Affected

grokster

  • grokster

altnet

  • altnet_download_manager

kazaa

  • kazaa_media_desktop