473 matches found
Transmission - RPC DNS Rebinding Exploit
Exploit for multiple platform in category remote exploits The transmission bittorrent client uses a client/server architecture, the user interface is the client and a daemon runs in the background managing the downloading, seeding, etc. Clients interact with the daemon using JSON RPC requests to ...
New BitTorrent Flaw Puts Linux & Windows devices at risk of hacking
By Waqas Tavis Ormandy, an IT security researcher at Googles Project Zero This is a post from HackRead.com Read the original post: New BitTorrent Flaw Puts Linux Windows devices at risk of hacking...
Flaw in Popular Transmission BitTorrent Client Lets Hackers Control Your PC Remotely
A critical vulnerability has been discovered in the widely used Transmission BitTorrent app that could allow hackers to remotely execute malicious code on BitTorrent users' computers and take control of them. The vulnerability has been uncovered by Google's Project Zero vulnerability reporting...
[SECURITY] [DSA 4087-1] transmission security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4087-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 14, 2018 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-4087-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-863-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
store.bittorrent.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-494198 Description| Value ---|--- Affected Website:| store.bittorrent.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Disclosure Standard:| Coordinated Disclosure based on...
[SECURITY] Fedora 25 Update: qbittorrent-4.0.1-1.fc25
A Bittorrent client using rblibtorrent and a Qt4 Graphical User Interface. It aims to be as fast as possible and to provide multi-OS, unicode support...
[SECURITY] Fedora 26 Update: rb_libtorrent-1.1.5-1.fc26
rblibtorrent is a C++ library that aims to be a good alternative to all the other BitTorrent implementations around. It is a library and not a full featured client, although it comes with a few working example clients. Its main goals are to be very efficient in terms of CPU and memory usage as we...
[SECURITY] Fedora 27 Update: rb_libtorrent-1.1.5-1.fc27
rblibtorrent is a C++ library that aims to be a good alternative to all the other BitTorrent implementations around. It is a library and not a full featured client, although it comes with a few working example clients. Its main goals are to be very efficient in terms of CPU and memory usage as we...
[SECURITY] Fedora 27 Update: qbittorrent-4.0.1-1.fc27
A Bittorrent client using rblibtorrent and a Qt4 Graphical User Interface. It aims to be as fast as possible and to provide multi-OS, unicode support...
transmission-daemon -- vulnerable to dns rebinding attacks
Google Project Zero reports: The transmission bittorrent client uses a client/server architecture, the user interface is the client which communicates to the worker daemon using JSON RPC requests. As with all HTTP RPC schemes like this, any website can send requests to the daemon listening on...
Bittorrent 7.10.0 (Build 43581) Installer DLL Hijacking
Exploit Title: Bittorrent 7.10.0 Build 43581 Installer DLL Search Order Hijack - "WININET.dll", "DNSAPI.dll", others Date of Discovery: July 21 2017 Exploit Author: Rithwik Jayasimha Author Homepage/Contact: https://thel3l.me Vendor Name: Bittorrent Inc. Vendor Homepage: https://www.bittorrent.co...
[SECURITY] Fedora 26 Update: deluge-1.3.15-1.fc26
Deluge is a new BitTorrent client, created using Python and GTK+. It is intended to bring a native, full-featured client to Linux GTK+ desktop environments such as GNOME and XFCE. It supports features such as DHT Distributed Hash Tables, PEX =EF=BF=BD=EF=BF=BDTorrent-compatible Peer E xchange, an...
[SECURITY] Fedora 24 Update: deluge-1.3.15-1.fc24
Deluge is a new BitTorrent client, created using Python and GTK+. It is intended to bring a native, full-featured client to Linux GTK+ desktop environments such as GNOME and XFCE. It supports features such as DHT Distributed Hash Tables, PEX =EF=BF=BD=EF=BF=BDTorrent-compatible Peer E xchange, an...
[SECURITY] Fedora 25 Update: deluge-1.3.15-1.fc25
Deluge is a new BitTorrent client, created using Python and GTK+. It is intended to bring a native, full-featured client to Linux GTK+ desktop environments such as GNOME and XFCE. It supports features such as DHT Distributed Hash Tables, PEX =EF=BF=BD=EF=BF=BDTorrent-compatible Peer E xchange, an...
Debian DSA-3856-1 : deluge - security update
Two vulnerabilities have been discovered in the web interface of the Deluge BitTorrent client directory traversal and cross-site request forgery. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisor...
[SECURITY] [DSA 3856-1] deluge security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3856-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 18, 2017 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3856-1 (deluge - security update)
Two vulnerabilities have been discovered in the web interface of the Deluge BitTorrent client directory traversal and cross-site request forgery. OpenVAS Vulnerability Test $Id: deb3856.nasl 6607 2017-07-07 12:04:25Z cfischer $ Auto-generated from advisory DSA 3856-1 using nvtgen 1.0 Script...
Debian: Security Advisory (DSA-3856-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...