CVE-2009-1759

Rahul Dtorrent - Memory Corruption

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1759. PoCs published by Michael Brooks.

AI-analyzed exploit summary This exploit leverages a stack-based buffer overflow in cTorrent/dTorrent via a maliciously crafted torrent file. It injects shellcode to spawn a bind shell on port 4444, targeting the btFiles::BuildFromMI function.

Description

Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Torrent file containing a long path.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michael Brooks · pythonlocallinux

https://www.exploit-db.com/exploits/8470

View Code ZIP pw:eip

This exploit leverages a stack-based buffer overflow in cTorrent/dTorrent via a maliciously crafted torrent file. It injects shellcode to spawn a bind shell on port 4444, targeting the btFiles::BuildFromMI function.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: cTorrent 1.3.4, dTorrent 3.3.2

No auth needed

Prerequisites: A vulnerable version of cTorrent/dTorrent · Ability to deliver a malicious torrent file to the target

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (14)

Core 14

Core References

Vendor Advisory vendor-advisory x_refsource_fedora

https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01102.html

Issue Tracking x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=501813

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/1092

Patch x_refsource_confirm

http://dtorrent.svn.sourceforge.net/viewvc/dtorrent/dtorrent/trunk/btfiles.cpp?r1=296&r2=301&view=patch

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/8470

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/49959

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/34752

Patch mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2009/05/20/3

Exploit, Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/34584

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2009/dsa-1817

Vendor Advisory vendor-advisory x_refsource_fedora

https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01010.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/36471

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/35499

Product x_refsource_confirm

http://sourceforge.net/tracker/?func=detail&aid=2782875&group_id=202532&atid=981959

Scores

EPSS 0.1414

EPSS Percentile 96.1%

Details

CWE

CWE-119

Status published

Products (5)

rahul/ctorrent 1.3.4

rahul/dtorrent 3.2.0

rahul/dtorrent 3.3.0

rahul/dtorrent 3.3.1

rahul/dtorrent 3.3.2

Published May 22, 2009

Tracked Since Feb 18, 2026