← volver
CVE-2008-4434

CVE-2008-4434

EPSS 11.0%
Stack-based buffer overflow in (1) uTorrent 1.7.7 build 8179 and earlier and (2) BitTorrent 6.0.3 build 8642 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Created By field in a .torrent file.
Productos afectados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/6787no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://forum.utorrent.com/viewtopic.php?id=44003http://lists.immunitysec.com/pipermail/dailydave/attachments/20080811/35d6194b/attachment-0001.pdfhttp://seclists.org/dailydave/2008/q3/0155.htmlhttp://secunia.com/advisories/31441http://secunia.com/advisories/31445https://exchange.xforce.ibmcloud.com/vulnerabilities/44404http://www.securityfocus.com/bid/30653http://www.securitytracker.com/id?1020664http://www.vupen.com/english/advisories/2008/2340http://www.vupen.com/english/advisories/2008/2341