CVE-2005-2868

ZipTorrent 1.3.7.3 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-2868. PoCs published by Kozan.

AI-analyzed exploit summary This exploit reads the plaintext proxy credentials stored in ZipTorrent's pref.txt file by locating the installation path via the Windows Registry and parsing the file. It demonstrates an information disclosure vulnerability.

Description

ZipTorrent 1.3.7.3 stores sensitive information in plaintext in the pref.txt file, which allows local users to obtain sensitive information such as proxy server information and passwords.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kozan · clocalwindows

https://www.exploit-db.com/exploits/1174

View Code ZIP pw:eip

This exploit reads the plaintext proxy credentials stored in ZipTorrent's pref.txt file by locating the installation path via the Windows Registry and parsing the file. It demonstrates an information disclosure vulnerability.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: ZipTorrent 1.3.7.3 (and prior versions)

No auth needed

Prerequisites: Local access to the system · ZipTorrent installed

MITRE ATT&CK

T1552 - Unsecured Credentials T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Vendor Advisory, URL Repurposed x_refsource_misc

http://www.spyinstructors.com/show.php?name=Advisories&pa=showpage&pid=65

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/16542

Scores

EPSS 0.0077

EPSS Percentile 50.8%

Details

Status published

Products (1)

ziptorrent/ziptorrent 1.3.7.3

Published Sep 08, 2005

Tracked Since Feb 18, 2026