Only users of FAT filesystems are affected, and the bug affects all FastTrack users not just Morpheus (e.g. Grokster, Kazaa, Refo-search). Quote from a tech support post at Zeropaid:
<< Yes. We have confirmed the reports that Morpheus does indeed contain the security hole. Our programmers are working diligently on a fix and we hope to have it ready within the week. We have found that the exploit does in fact allow a malicious user to gain access to the root level of the Morpheus user's C: drive and therefore gain write access to private files on the user's entire system, not just the shared folder.
We have determined that the reason why only some systems are affected, is that the flaw does not seem to work on Windows XP systems. We believe this is due to the fact that XP uses the NTFS file system and has security settings in effect. Windows98, 95, and WinME systems are vulnerable.
(Note: Although it will sometimes run, Morpheus is not recommended for Windows XP due to additional problems with compatibility. WIndows XP compatibility is expected in our future 2.0 release this spring.)
The Kazaa program, and Grokster which share the same code, are also affected. We apologize for any inconvenience this has caused you and we assure you we are working as fast as we can to arrive at a solution. We will post the security fix on the Grokster site where we have posted another security tool, at the following url: (Link)
We hope to provide you with the best filesharing program out there and we assure you that we will have the issue taken care of shortly.
Thank you,
-Paul Sarsfield,
Tech Support
MusicCity Morpheus
"Gamer" MusicCity Op >>
edit-
<< I find it hard to believe that people using morpoues would be interested in doing anything illegal like taking or looking at something that isn't their's >>
Does the name Recording Industry Association of America ring a bell?? They've made their motives public that they would love to find a way to hack into P2P users' drives and delete files, copy personally identifiable information, etc.. Protect what's your's, but don't stop using P2P apps in fear of what the RIAA, MPAA, and whoever wants to do with users' info.