https://cxsecurity.com/issue/WLB-2007100073
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-479

KaZaaMediaDesktop是第二代对等文件共享服务，利用该软件，您可以从其它KaZaa使用者那里，搜寻和下载媒体文件。KaZaA对广告应答缺少正确处理，远程攻击者可以利用这个漏洞对KaZaA客户端进行拒绝服务攻击。当KaZaA客户端与服务器端发起连接时，会产生广告下载请求，但是KaZaA不充分正确处理未预料的广告请求应答，恶意的响应可以导致KaZaA客户端崩溃。

Hi!

It is possible to cause a remote denial of service attack against Kazaa
Media Desktop v2.

If you can inject a malicous response for the automated ad download of
the client, you can cause a bufferoverflow and the denial of service. It
may be possible to run arbitary code with this vulnerability.

The easiest way to reproduce this behavior is deny all http connections
to hosts named *ad*. For example activate the "Block Sites" feature of
the NetGear FM114P and block the keyword "ad". After this change, every
time you start the vulnerable Kazaa client, the software crashes with
the typical windows error message during connection establishment.

Tested on Kazaa Media Desktop 2.0.2, Built Tuesday, November 05, 2002,
17:07:24 on Windows XP Professional with NetGear FM114P.

My bug report was sent on 03/01/27 to The Sharman Networks Team. Nothing
came back - Just the automated default reply.

Bye, Marc

-- 
Computer, Technik und Security                  http://www.computec.ch/
Meine private Webseite                    http://www.computec.ch/mruef/

来源:XF
名称:kazaa-automated-ad-bo(11228)
链接:http://xforce.iss.net/xforce/xfdb/11228
来源:BID
名称:6747
链接:http://www.securityfocus.com/bid/6747
来源:BUGTRAQ
名称:20030202DenialofserviceagainstKazaaMediaDesktopv2
链接:http://www.securityfocus.com/archive/1/309935
来源:SREASON
名称:3252
链接:http://securityreason.com/securityalert/3252
来源：NSFOCUS
名称：4327
链接：http://www.nsfocus.net/vulndb/4327