| VID |
27334 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
P2P |
| Detailed Description |
A version of DC++ client which is older than version 0.674 is detected as installed on the host. DC++ is an open source client using the Direct Connect peer-to-peer file-sharing protocol for Microsoft Windows operating systems. DC++ versions prior to 0.674 could allow a remote attacker to append data to arbitrary files on the system. A remote attacker could exploit this flaw to append data to the end of arbitrary files on the drive on which DC++ is installed.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://dcplusplus.sourceforge.net/index.php?t=8&s=1
http://secunia.com/advisories/14880/
http://www.osvdb.org/displayvuln.php?osvdb_id=15433
* Platforms Affected:
DC++ Open Source Project, DC++ versions prior to 0.674
Microsoft Windows Any version |
| Recommendation |
If P2P file sharing program is not allowed at your organization, uninstall the program.
-- OR --
Upgrade to the latest version of DC++ (0.674 or later), available from the DC++ Download Web page at http://dcplusplus.sourceforge.net/index.php?t=2&s=1 |
| Related URL |
CVE-2005-1089 (CVE) |
| Related URL |
13088 (SecurityFocus) |
| Related URL |
20046 (ISS) |
|
