CVE-2008-4434

uTorrent < 1.7.7 and BitTorrent < 6.0.3 - Stack-Based Buffer Overflow via .torrent Created By Field

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4434. PoCs published by Guido Landi.

AI-analyzed exploit summary This exploit targets a stack buffer overflow in BitTorrent 6.0.3 by crafting a malicious .torrent file. It uses a combination of Unicode-friendly shellcode, an egghunter, and a Venetian decoder to achieve remote code execution (RCE) by launching calc.exe.

Description

Stack-based buffer overflow in (1) uTorrent 1.7.7 build 8179 and earlier and (2) BitTorrent 6.0.3 build 8642 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Created By field in a .torrent file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Guido Landi · perllocalwindows

https://www.exploit-db.com/exploits/6787

View Code ZIP pw:eip

This exploit targets a stack buffer overflow in BitTorrent 6.0.3 by crafting a malicious .torrent file. It uses a combination of Unicode-friendly shellcode, an egghunter, and a Venetian decoder to achieve remote code execution (RCE) by launching calc.exe.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: BitTorrent 6.0.3

No auth needed

Prerequisites: Victim must open the malicious .torrent file in BitTorrent 6.0.3

MITRE ATT&CK