CVE-2009-5134
uTorrent 1.8.3 - Buffer Overflow via Large String in Create Torrent Dialog
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2009-5134. PoCs published by Dr_IDE.
AI-analyzed exploit summary This exploit is a buffer overflow PoC for uTorrent <= 1.8.3 (Build 15772). It generates a large string of 'A' characters (9000 bytes) and writes it to a file, which when pasted into the 'Source' field during torrent creation, triggers the overflow.
Description
Buffer overflow in the "create torrent dialog" functionality in uTorrent 1.8.3 build 15772, and possibly other versions before 1.8.3 (Build 16010), allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a text file containing a large string. NOTE: some of these details are obtained from third party information.
Exploits (1)
This exploit is a buffer overflow PoC for uTorrent <= 1.8.3 (Build 15772). It generates a large string of 'A' characters (9000 bytes) and writes it to a file, which when pasted into the 'Source' field during torrent creation, triggers the overflow.