PT-2009-2633 · Bittorrent · Utorrent
Luigi Auriemma
·
Published
2009-09-04
·
Updated
2009-09-09
·
CVE-2008-7166
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
uTorrent (affected versions not specified)
Description
A vulnerability was discovered that can be exploited to cause a Denial of Service (DoS). The issue is due to an error in handling HTTP requests, specifically when the
Range header string is overly long. This can cause the application to crash when multiple HTTP requests are sent. Successful exploitation requires the Web UI interface to be enabled.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Utorrent