Security vulnerability in Altnet Download Manager
A security vulnerability in the Altnet Download Manager (ADM) puts the PCs of Kazaa and Grokster users at risk. The Altnet Download Manager is intended to expand file searches in Kazaa und Grokster.
According to Bugtraq, the manager's ActiveX control (adm4.dll) causes a buffer overflow when the argument of an install function call is too long. Code can also be introduced and executed. This can be done by luring the user into accessing a malicious website. Versions of Altnet Download Manager up to 184.108.40.206 are vulnerable. As a result, versions of Kazaa up to 220.127.116.11, and Grokster up to 2.6 are also affected.
Currently, there is no patch available. As a workaround, either a kill-bit can be set for the control (CLSID DEF37997-D9C9-4A4B-BF3C-88F99EACEEC2) to prevent downloading in Internet Explorer, or the ADM file (adm.exe) can simply be deleted.
The Altnet Download Manager expands file searches in Kazaa and Grokster.
- Altnet Download Manager ADM4 ActiveX Buffer Overflow Vulnerability, vulnerability report at Bugtraq