473 matches found
CVE-2016-10519
A security issue was found in bittorrent-dht before 5.1.3 that allows someone to send a specific series of messages to a listening peer and get it to reveal internal memory...
CVE-2016-10519
The CVE-2016-10519 entry describes a vulnerability in bittorrent-dht before 5.1.3 where an attacker can send a crafted sequence of messages to a listening peer to cause disclosure of internal memory. Affected component: bittorrent-dht (Node.js implementation). Root cause: insecure handling of mes...
bittorrent-s.cleverbridge.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-617460 Description| Value ---|--- Affected Website:| bittorrent-s.cleverbridge.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
MGASA-2018-0230 Updated transmission packages fix a security vulnerability
Updated transmission packages fix security vulnerability: Tavis Ormandy discovered a vulnerability in the Transmission BitTorrent client; insecure RPC handling between the Transmission daemon and the client interfaces may result in the execution of arbitrary code if a user visits a malicious...
Updated transmission packages fix a security vulnerability
Updated transmission packages fix security vulnerability: Tavis Ormandy discovered a vulnerability in the Transmission BitTorrent client; insecure RPC handling between the Transmission daemon and the client interfaces may result in the execution of arbitrary code if a user visits a malicious...
A week in security (March 12 – March 18)
Last week on Malwarebytes Labs, we took a look at the inner workings of a fileless attack, explored what happened in a zero day ransomware attack aimed at South Koreans, gave you hints and tips for avoiding cold calls, and took a deep dive into the secretive world of GrayKey. Other news The Equif...
Trojanized BitTorrent Software Update Hijacked 400,000 PCs Last Week
A massive malware outbreak that last week infected nearly half a million computers with cryptocurrency mining malware in just a few hours was caused by a backdoored version of popular BitTorrent client called MediaGet. Dubbed Dofoil also known as Smoke Loader, the malware was found dropping a...
[SECURITY] Fedora 26 Update: transmission-2.92-12.fc26
Transmission is a free, lightweight BitTorrent client. It features a simple, intuitive interface on top on an efficient, cross-platform back-end...
Cisco Firepower System Software Security Bypass Vulnerability (CNVD-2018-05310)
Cisco Firepower System Software is a next-generation firewall product NGFW of Cisco USA. detection engine is one of the intrusion detection engine. A security vulnerability exists in the detection engine in Cisco Firepower System Software, which stems from the program's failure to properly detect...
uTorrent Users Warned of Remote Code Execution Vulnerability
Google Project Zero researchers are warning of two critical remote code execution vulnerabilities in popular versions of BitTorrent’s web-based uTorrent Web client and its uTorrent Classic desktop client. According to researchers, the flaws allow a hacker to either plant malware on a user’s...
CVE-2018-0138
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
CVE-2018-0138
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
Design/Logic Flaw
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
CVE-2018-0138
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
CVE-2018-0138
CVE-2018-0138 affects Cisco Firepower System Software’s detection engine, enabling an unauthenticated remote attacker to bypass BitTorrent file policies by sending crafted BitTorrent handshake requests. This bypass specifically targets the detection logic that blocks BitTorrent-delivered files; e...
CVE-2018-0138
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
CVE-2018-0138
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
Cisco Firepower System Software BitTorrent File Policy Bypass Vulnerability
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected softwa...
[SECURITY] Fedora 27 Update: transmission-2.92-12.fc27
Transmission is a free, lightweight BitTorrent client. It features a simple, intuitive interface on top on an efficient, cross-platform back-end...
[SECURITY] Fedora 27 Update: transmission-2.92-11.fc27
Transmission is a free, lightweight BitTorrent client. It features a simple, intuitive interface on top on an efficient, cross-platform back-end...