Bugtraq mailing list archives

Re: Infecting the KaZaA network?

From: Alun Jones <alun () texis com>
Date: Fri, 08 Feb 2002 13:58:52 -0600

At 08:51 AM 2/8/2002, GertJan de Leeuw wrote:

So the only way somebody can infect the network is ,
injecting the first compiled version of a new
distibution (but that is hardly impossible)

Not necessarily, one could simply find a portion of the original programthat is overspecified, or a feature that most people don't use, and writeyour code into that space. If the code you replace is small enough, it'lllikely fit into a convenient block boundary, such that your code willeither be downloaded or not, and you really don't necessarily care aboutinfecting the whole network.


Alun.
~~~~

--
Texas Imperial Software   | Try WFTPD, the Windows FTP Server. Find us at
1602 Harvest Moon Place   | http://www.wftpd.com or email alun () texis com
Cedar Park TX 78613-1419  | VISA/MC accepted.  NT-based sites, be sure to
Fax/Voice +1(512)258-9858 | read details of WFTPD Pro for NT.

Current thread:

RE: Infecting the KaZaA network? Andrew McClymont (Feb 07)
- <Possible follow-ups>
- Re: Infecting the KaZaA network? GertJan de Leeuw (Feb 08)
  - Re: Infecting the KaZaA network? Alun Jones (Feb 08)
  - Re: Infecting the KaZaA network? Ben Laurie (Feb 11)