CVE-2006-0474

Name of the Vulnerable Software and Affected Versions Shareaza version 2.2.1.0

Description The issue is caused by multiple integer overflows that allow remote attackers to execute arbitrary code. This can occur via a large packet length field, which causes an overflow in the ReadBuffer function in files BTPacket.cpp and EDPacket.cpp, or a large packet, which causes a heap-based overflow in the Write function in Packet.h.

Recommendations For Shareaza version 2.2.1.0, consider disabling the ReadBuffer function and the Write function in Packet.h as a temporary workaround until a patch is available. Restrict access to the affected files BTPacket.cpp and EDPacket.cpp to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.