[email protected]CVE-2008-0071

HistoryJun 16, 2008 - 6:41 p.m.

CVE-2008-0071

2008-06-1618:41:00

CWE-20

[email protected]

web.nvd.nist.gov

web ui

bittorrent

utorrent

denial of service

application crash

http

security vulnerability

6.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.039 Low

EPSS

Percentile

91.9%

JSON

The Web UI interface in (1) BitTorrent before 6.0.3 build 8642 and (2) uTorrent before 1.8beta build 10524 allows remote attackers to cause a denial of service (application crash) via an HTTP request with a malformed Range header.

CPENameOperatorVersion
bittorrent:bittorrentbittorrenteq4.0.4
bittorrent:bittorrentbittorrenteq4.20.4
bittorrent:bittorrentbittorrenteq4.27.2
bittorrent:bittorrentbittorrenteq4.1.3
bittorrent:bittorrentbittorrenteq4.3.2
bittorrent:bittorrentbittorrenteq4.26.0
utorrent:utorrentutorrenteq1.4
bittorrent:bittorrentbittorrenteq5.2.0
bittorrent:bittorrentbittorrenteq5.0.8
bittorrent:bittorrentbittorrenteq4.20.7

CPE	Name	Operator	Version
bittorrent:bittorrent	bittorrent	eq	4.0.4
bittorrent:bittorrent	bittorrent	eq	4.20.4
bittorrent:bittorrent	bittorrent	eq	4.27.2
bittorrent:bittorrent	bittorrent	eq	4.1.3
bittorrent:bittorrent	bittorrent	eq	4.3.2
bittorrent:bittorrent	bittorrent	eq	4.26.0
utorrent:utorrent	utorrent	eq	1.4
bittorrent:bittorrent	bittorrent	eq	5.2.0
bittorrent:bittorrent	bittorrent	eq	5.0.8
bittorrent:bittorrent	bittorrent	eq	4.20.7

Rows per page:

1-10 of 871

References

secunia.com/advisories/28703

secunia.com/advisories/30605

secunia.com/secunia_research/2008-7/advisory/

securityreason.com/securityalert/3943

securitytracker.com/id?1020266

www.securityfocus.com/archive/1/493269/100/0/threaded

www.securityfocus.com/bid/29661

www.securitytracker.com/id?1020265

www.vupen.com/english/advisories/2008/1808

www.vupen.com/english/advisories/2008/1809

www.exploit-db.com/exploits/5918

Social References

6.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.039 Low

EPSS

Percentile

91.9%

JSON

Related for CVE-2008-0071

prion2 seebug1 securityvulns2 cve1