Lucene search

PRIOn knowledge basePRION:CVE-2008-7166

HistorySep 04, 2009 - 10:30 a.m.

Buffer overflow

2009-09-0410:30:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.011 Low

EPSS

Percentile

84.0%

JSON

Buffer overflow in the web interface in BitTorrent 6.0.1 (build 7859) and earlier, and uTorrent 1.7.6 (build 7859) and earlier, allows remote attackers to cause a denial of service (memory consumption and crash) via a crafted Range header. NOTE: this is probably a different vulnerability than CVE-2008-0071 and CVE-2008-0364.

CPENameOperatorVersion
bittorrenteq4.0.4
bittorrenteq4.20.4
bittorrenteq4.27.2
bittorrenteq4.1.3
bittorrenteq4.3.2
bittorrenteq4.26.0
bittorrenteq5.2.0
bittorrenteq5.0.8
bittorrenteq4.20.7
bittorrenteq5.0.0

Name	Operator	Version
bittorrent	eq	4.0.4
bittorrent	eq	4.20.4
bittorrent	eq	4.27.2
bittorrent	eq	4.1.3
bittorrent	eq	4.3.2
bittorrent	eq	4.26.0
bittorrent	eq	5.2.0
bittorrent	eq	5.0.8
bittorrent	eq	4.20.7
bittorrent	eq	5.0.0

Rows per page:

1-10 of 861

References

aluigi.altervista.org/adv/ruttorrent2-adv.txt

osvdb.org/42825

osvdb.org/42826

secunia.com/advisories/28686

secunia.com/advisories/28695

www.vupen.com/english/advisories/2008/0326

www.vupen.com/english/advisories/2008/0327

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.011 Low

EPSS

Percentile

84.0%

JSON

Related for PRION:CVE-2008-7166