Unrated severityNVD Advisory· Published May 1, 1999· Updated Apr 16, 2026

CVE-2000-0412

Description

The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.

Affected products

Napster/Knapster
cpe:2.3:a:napster:knapster:napster:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:18-gnapster.advnvd
archives.neohapsis.com/archives/bugtraq/2000-05/0124.htmlnvd
archives.neohapsis.com/archives/bugtraq/2000-05/0127.htmlnvd
www.securityfocus.com/bid/1186nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000