Mar 13 2007

KTorrent exploits revealed

  • Written by soulxtc
  • 1 Comment


For you Ubuntu users out there, it’s just been revealed that earlier versions of the KTorrent BitTorrent client server are vulnerable to attack. A malicious remote peer could send specially crafted messages to overwrite files or execute arbitrary code with user privileges.

It has been reported that versions of the open-source BitTorrent client server KTorrent earlier than 2.1.2 are vulnerable to a pair of hacker attacks.

According to the bug report on the Ubuntu site, the first vulnerability can enable a hacker to cause the application to crash, and also allows them the ability to inject executable code onto a system.

More specifically:

chunkcounter.cpp in KTorrent before 2.1.2 allows remote attackers to cause a denial of service (crash) and heap corruption via a negative or large idx value.
CVSS Severity: 7.0 (High)
Range: Remotely exploitable
Authentication: Not required to exploit
Impact Type: Provides unauthorized access, Allows partial confidentiality, integrity, and availability violation , Allows disruption of service

The second vulnerability is reported to allow the deliberate overwriting of arbitrary files on a user’s system. The problem apparently occurs because the KTorrent BitTorrent client server does not correctly validate the destination file paths or the HAVE statements sent by torrent tracker peers. Inserting the string sequence “..” into the torrent filename is said to be all that is needed to break out of defined directories. A malicious remote peer could send specially crafted messages to overwrite files or execute arbitrary code with user privileges.

More specifically:

Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via “..” sequences in a torrent filename.
CVSS Severity: 5.6 (Medium)
Range: Remotely exploitable
Authentication: Not required to exploit
Impact Type: Provides unauthorized access, Allows partial confidentiality, integrity, and availability violation , Allows disruption of service

In any event, KTorrent version 2.1.2 has been released and addresses both of these critical issues.
digg_url = ‘http://digg.com/linux_unix/KTorrent_exploits_revealed’;

RELATED NEWS AND “HOW TO” GUIDES:
3 Quick Ways to Watch Movies for FREE!
3 quick ways to watch TV shows for FREE
BitTorrent tracker sites & search engines
Azureus – A Beginner’s Guide to BitTorrent Downloading
uTorrent – A Beginner’s guide to BitTorrent downloading
Watch The Simpsons, The Office, Jackass, South Park, Lost, X-Men, and More On-Demand For Free

SOULXTC: “walkin’ the streets of P2P”

4

Related Posts

  1. uTorrent exploit revealed
  2. uTorrent “Highly Critical” Vulnerability Discovered
  3. Firefox JavaScript security “a complete mess”? More like a hoax
  4. BitTorrent for Linux
  5. uTorrent 1.7.7 Stable Released
Zeropaid on Facebook

Comments

  1. Hath

    Well that sucks. But it doesn’t affect me because I don’t use that applicatioon. Azureus all the way.

Trackbacks url:

Leave a Comment...

  • Advertisement

    Giganews Newsgroups

1 Star2 Stars3 Stars4 Stars5 Stars Loading ... Loading ...

  • mpsharp.com Blog » Watching NFL games online: [...] show you a number of streams to choose from for each game.  All the streams require some sort of StreamTorrent pl...
  • ejonesss: no it is not going to completely stop piracy because while it will stop those whose reason for piracy is quality it is n...
  • file sharing anonymously - P2Pfreak.com: [...] and Trusty Files) just google any one of them and you will get some great info. also here IP filtering with uTorr...
  • soulxtc: Wasn't aware people were guaranteed jobs...
  • mountain_rage: BTW Youtube is supposed to go 1080P soon :D....
  • Gibbbo: Unfortunately the European stores still don't have anything close to the selection available in the USA store. I'm buyin...
  • STUDY: Artists Earn More in a P2P World: [...] personal favorite is the “The Impact of Music Downloads and P2P File-Sharing on the Purchase of Music: A Study F...
  • D.AN: So a stupid plan has been become a doubly-retarded plan....
  • sdsd