cTorrent and dTorrent Torrent File Buffer Overflow Vulnerability

cTorrent and dTorrent are prone to a remote buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Successful exploits allow remote attackers to execute arbitrary machine code in the context of a vulnerable application. Failed exploit attempts will likely result in denial-of-service conditions.

cTorrent 1.3.4 and dTorrent 3.3.2 are vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus