CVE-2000-0412

knapster - Unauthenticated Arbitrary File Read via MP3 Pathname

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0412. PoCs published by no_maam.

AI-analyzed exploit summary This exploit targets a file disclosure vulnerability in Gnapster (pre-1.3.9) and Knapster (up to 0.10) by sending a crafted GET request to the Napster clone client, allowing unauthorized access to any file the client has permissions to read. The script connects to the target via TCP, requests the specified file, and outputs its contents if accessible.

Description

The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by no_maam · perlremoteunix

https://www.exploit-db.com/exploits/19905

View Code ZIP pw:eip

This exploit targets a file disclosure vulnerability in Gnapster (pre-1.3.9) and Knapster (up to 0.10) by sending a crafted GET request to the Napster clone client, allowing unauthorized access to any file the client has permissions to read. The script connects to the target via TCP, requests the specified file, and outputs its contents if accessible.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Gnapster (pre-1.3.9), Knapster (up to 0.10)

No auth needed

Prerequisites: Network access to the target's Napster clone client (default port 6699) · Target client must be running a vulnerable version

MITRE ATT&CK

T1083 - File and Directory Discovery T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-05/0124.html

Various Sources vendor-advisory x_refsource_freebsd

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:18-gnapster.adv

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1186

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-05/0127.html

Scores

EPSS 0.0275

EPSS Percentile 84.3%

Details

Status published

Products (1)

napster/knapster napster

Published May 01, 1999

Tracked Since Feb 18, 2026