[Mldonkey-bugs] [bug #12942] HA HA very funny -> vulnerabilities in MLdonkey and or g2gui-0.3.0

[anonymous]

URL:
  <http://savannah.nongnu.org/bugs/?func=detailitem&item_id=12942>

                 Summary: HA HA very funny -> vulnerabilities in MLdonkey and
or g2gui-0.3.0
                 Project: mldonkey, a multi-networks file-sharing client
            Submitted by: None
            Submitted on: Mon 05/02/2005 at 18:01
                Category: Core
                Severity: 3 - Normal
              Item Group: Program malfunction
                  Status: None
             Assigned to: None
             Open/Closed: Open
                 Release: None
                 Release: g2gui-0.3.0
        Platform Version: None
         Binaries Origin: None
                CPU type: Intel x86

    _______________________________________________________

Details:

First let me tell you that I&#8217;m a network & systems analyst from old
school ,, that&#8217;s 20 plus yrs kids.

After a hassle of an install on Win2k box I ran into further problems: YES
the ports and settings were done correctly!

On first run I find so many connections were started that my router went
down. > tuned them down some.
With tuned down settings router still went down; tried 5 more routers ,, same
story.

g2gui-0.3.0 crashes on any other java app being started. Ie Visualroute etc.
actually crashes all java apps.

Now we get to interesting parts; for 3 frikin&#8217; yrs I&#8217;ve had no
SPAM on this box, then as soon as I install this junk all hell breaks loose.
This tells me mldonkey and or g2gui-0.3.0 is susceptible to data miners,
tunneling past routers and firewalls, privacy apps etc.

With the number of vulnerabilities found I&#8217;m not even going to bother
sending packet capture files!

I think you ppl better recode these proggies for much safer use or
you&#8217;re going to have a war on your hands. 

Do you ppl ever test these things on systems you intend to use &#8216;em on?

Let me remind you code is still around that will crash/nuke every device no
matter what kind of silly linux/bsd box you&#8217;re using or general
protection. This includes CPU&#8217;s, motherboards, keyboards, HD&#8217;s,
any EPROM/EEPROM, cache, buffers etc. 
And my favorite; monitors! [will explode cathode to cover 15 ft.] 

Show some respect for general users or pay the consequences!

Regards,
Turbo_Harley
Network & Systems Analyst [Providing Comprehensive Security since 1989]
coder / fishnet (1981) / internet authority
Propulsion Systems Engineer 
Tai' Chi Master
*This is a temporary Anti-Spam account. Any SPAM resulting from this contact
will have a charge of $5 per SPAM and any costs incurred in dealing with
such.*
"MS-DOS, Basic, Windows etc. are all stolen trash code from other companies'
garbage cans."
"To trolls I say: please engage eyeballs and retain functional brain before
operating fingers." Unknown author 







    _______________________________________________________

Reply to this item at:

  <http://savannah.nongnu.org/bugs/?func=detailitem&item_id=12942>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.nongnu.org/