Gnutella Security Hey
I came across some Gnutella security loopholes recently. One of these loopholes which I found interesting, was a worm which replies positively to most of the queries it get. Suppose someone searches for itunes and it will reply with itunes.exe (basically building answers through the search string). If a user gets tricked into downloading this file and he executes it, the worm will take control of his application say limewire and this application will also start exhibiting worm behavior.
How big a problem do you think this loop hole can pose to Gnutella.
Lapsy |