Add real-time p2pnet headlines to YOUR site ! Click here to download our newsfeed code

‘Highly Critical’ uTorrent security hole

p2pnet news view | P2P:- Secunia has issued a ‘highly critical’ alert for uTorrent in version 1.7.7, build 8179.

“A vulnerability has been discovered in BitTorrent, which potentially can be exploited by malicious people to compromise a user’s system,” it says.

The vulnerability, originally discovered by Rhys Kidd and reported on Dailydave, “is caused due to the use of vulnerable uTorrent code,” says Secunia.

A boundary error in the processing of .torrent files, “can be exploited to cause a stack-based buffer overflow by tricking the user into opening a “.torrent” file containing an overly long ‘created by’ field.

“Successful exploitation may allow execution of arbitrary code.”

The flaw is confirmed in version 1.7.7 (build 8179), but earlier versions may also be affected, adds Secunia.

Solution?

Update to version 1.8.0.

. .Stumble It!

New York Times – xxxxxxxxxxxxxxxxxxxxxx, August , 2008

---

Use free p2pnet newsfeeds for your site. It’s really easy!

Subscribe to p2pnet.net | | rss feed: http://p2pnet.net/p2p.rss | | Mobile – http://p2pnet.net/index-wml.php

This entry was posted on Tuesday, August 12th, 2008 at 11:53 am and is filed under P2P. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 6514 times

« previous Napster accumulated deficit of $199 million

p2pnet headline roundup – August 12, 2008 next »

9 Responses to “‘Highly Critical’ uTorrent security hole”

1. Reader's Write Says:
   August 12th, 2008 at 4:41 pm

   Isn’t that the same one that was reported already month ago?
   there were 1.7.7 builts after that number that had fixed the bug, were there not?

2. Gr33n3gg Says:
   August 12th, 2008 at 8:23 pm

   Funny, I still use version 1.6.1….

3. Martin Katz, Ph.D. Says:
   August 13th, 2008 at 12:52 am

   The new “Stable release” is 1.8.0. It has hundreds of bug fixes compared to 1.6.1.
   If you are hesitant, wait for 1.8.1 or 1.8.0.1 (whichever they name it).
   uTorrent 1.8 went through months of beta testing and then 7 Release Candidates. It is very stable on Windows XP and later.

4. Chris Says:
   August 13th, 2008 at 10:18 pm

   Did everyone wonder if maybe there doing it, so people will stop using the older versions so they cant mess with the trackers????
   There’s an idea………

5. Anon Says:
   August 14th, 2008 at 1:03 am

   “# Chris Says:
   August 13th, 2008 at 10:18 pm

   Did everyone wonder if maybe there doing it, so people will stop using the older versions so they cant mess with the trackers????
   There’s an idea………”

   No, you’re just a fucking idiot.

6. Jafo Says:
   August 14th, 2008 at 1:19 pm

   Installed 1.8 today. Reverted to 1.7.7 because 1.8 won’t connect to anything; has a lame icon; is not user friendly. Earlier versions had easy access to Global Bandwidth in Options-Connection. No longer there in 1.8.

7. upx Says:
   August 14th, 2008 at 6:06 pm

   I used 1.8, then reverted because 1.8 would not remember column settings. It even messed up 1.7.7’s column settings.
   Download speeds seemed about the same for both versions.

8. Liz Says:
   August 17th, 2008 at 9:45 am

   1.8’s icon makes me mad. its hideous. i’m sick of seeing it in my system tray. and i hate the new format for RSS.

9. Guest Says:
   August 18th, 2008 at 5:21 pm

   i upgraded to 1.8 then downgraded to 1.7 too many annoyance in newest rls

Leave a Reply