uTorrent Vulnerability Disclosed

[F.E.A.R]

hey guys a uTorrent vulnerability has been disclosed along with a proof of concept exploit,
this vulnerability affects uTorrent v1.6 running on XP SP1 & Win2K SP1-4 platforms
basically it will allow an attacker to create a malicious torrent file where the announce url is corrupted to crash uTorrent and will allow execution of shellcode.
although XP SP2 is not mentioned the exploit will still crash uTorrent on this platform so in my opinion its just a matter of time till someone figures out the correct offsets to succesfully exploit XP SP2 as well.
there has been a new uTorrent version 1.6.1.488 released to fix this flaw

Proof of Concept Exploit
http://defacedsecurity.com/defsec_utor1.6.c

uTorrent 1.6.1 Build 488
http://download.utorrent.com/1.6.1/utorrent.exe

be careful on public trackers

 

[hatab]

thanks for the info, will have to move to new version

 

[Napster]

new version installed this end, cheers for info m8

 

[PAUL7331]

thanks for the link. But U torrent is currently downloading at my house..hope my PC aint down when I get home!

 

[seanicca]

just updated thanx 4 the heads up

 

[Conners]

thanks for the heads up !

 

[Zooropa]

Just installed thanx for the info m8,much appreciated

 

[theseeker]

cheers fear, on the ball as usual:lsabre:

 

[PAUL7331]

Just tried downloading the new version and it turns out I already have the new one! I apparently installed in August. Happy days!

 

[Kdigital]

Just seen this on the forum.utorrent.com hope it helps

1.6.1 released with some bugfixes. Some people report a crashing issue when removing torrents, so please test it and report your findings.

--- 2007-02-13: Version 1.6.1 (build 489)
- Feature: Select upload/download speed for a torrent through the rightclick menu
- Feature: Added encryption box to speed guide

- Change: Don't check as many pieces at the same time.
- Change: Misc WebUI changes.
- Change: Switch to JSON for webinterface

- Fix: Problem with category list in the gui when updated from the webui
- Fix: WebUI not clearing state between requests.
- Fix: Redirect also index.html to guest.html
- Fix: Added On Now shows the time it's added, not loaded.
- Fix: JSON uses " instead of '
- Fix: (a) Upnp fix
- Fix: Show pause icon when checking is paused.
- Fix: Fixed problems with XML parser
- Fix: Don't allow two message boxes to be shown in the RSS window
- Fix: Changed some window titles
- Fix: Fix malformed .torrent exploit
- Fix: Boss key field is now larger

http://download.utorrent.com/1.6.1/utorrent.exe

If you'd like to be notified of new releases by e-mail, please visit this thread.
http://forum.utorrent.com/viewtopic.php?id=2971

Last edited by Firon (Today 13:55:12)

 

[biffo1]

Thanks for the info F.E.A.R as i use utorrent fully uptodate windows , but will move to new version
regards biffo

 

[F.E.A.R]

ffs another build, i`ve had to update my cheat twice in 1 day


just to clarify this exploit will only affect you if you download and open a malicious torrent in uTorrent 1.6.
ie the hacker would create a malicious torrent file then upload it to a public tracker and sit back and wait for some victims to download.
if you tried to start a torrent that you downloaded from a public tracker and your uTorrent crashed on opening it then you may have been compromised.

 

[freshness]

:grab:

Thanx foir the info.
will updating it fix this?
Or is it best to use azureus and remove u torrent

:ASSFLASH:

 

[F.E.A.R]

yeah just update and you`ll be fine mate
latest build is 1.6.1.490 and you can grab it here...
http://download.utorrent.com/1.6.1/utorrent.exe