Re: Reported Kazaa and Morpheus vulnerabilities

["Kartik Shinde" <k.shinde () nihilent com>]

Hi all,

Morpheus Vulnerability ?? i dont get what those guys wrote in the article on
bbc... i mean morpheus is made for filesharing and u could look into ppls
computers for certain files ....but hey ..thats restricted...!!! U (any
morpheus user)  can choose what drives or folders u want to share...

Ah...but it would be interesting to hear if someone could possibly write a
program whereby it would use morpheus port to access the shared folder and
possibly break out of the so called created "shell"...!!!

Cheers,
Kartik.
(waz thinkin abt this sometime ago ...good the question came up).


----- Original Message -----
From: "HarryM" <harrym () the-group org>
To: <vuln-dev () securityfocus com>
Sent: Monday, February 04, 2002 11:01 AM
Subject: Reported Kazaa and Morpheus vulnerabilities


> RE the article on the BBCs website at
> http://news.bbc.co.uk/hi/english/sci/tech/newsid_1798000/1798095.stm
>
> I just searched the archives at Securityfocus and CERT and neither
produced
> any relavent results
>
> I mean, pointing a browser to http://ip_address:1214/ does give a list of
> files... it gives the list of files that you're sharing. So what?
>
> Anyone know anything about this?
>
> Harry M