Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security

Security

uTorrent Vulnerable to Attacks

Highly critical security flaw discovered in the application

By Bogdan Popa, Security and Search Engines Editor

13th of February 2007, 09:54 GMT

Adjust text size:


Nowadays, torrent files tend to become one of the most used file transfer methods because they allow you to download files quick and easy without needing a special server to host the files. Because more and more users are looking for a powerful program to help them use torrent trackers, the market is continuously attracting companies to develop new solution. uTorrent is currently one of the most popular tools used for torrent download because it functions with minimal computer resources
bundled with a nice interface.

Although I use uTorrent periodically and I guess many of you are huge fans of the application, you must know that security company Secunia discovered a highly critical security flaw in the program that can allow an attacker to take control over an affected system. As I said, the security firm rated the vulnerability as "highly critical", sustaining the only affected version of the utility is 1.6 build 474 but some other editions of uTorrent might be also vulnerable to attacks.

"defsec has discovered a vulnerability in uTorrent, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when processing ".torrent" files and can be exploited to cause a stack-based buffer overflow via a specially crafted ".torrent" file with an overly long (greater than 4800 bytes) "announce" option. Successful exploitation allows execution of arbitrary code," Secunia sustained in a security advisory.

The security company also posted a solution to avoid being exploited by this vulnerability is to avoid opening untrusted .torrent files available on multiple websites.

uTorrent was also tested by Softpedia and it is available as a free download on this link.


Rating:
Good (3.0/5) 4 vote(s) so far    

Read by 2,453 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


TorrentSpy Fights Back

Mac OS X Leopard Developer Preview On Torrent Sites

Download Vista Using BitTorrent

Mobile BitTorrent!

The First BitTorrent Optimized CPU Is Here

Optimize uTorrent Settings for Best Performance

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive