CVE-2010-3129

uTorrent <= 2.0.3 - DLL Hijacking via Trojan Horse DLL in Torrent File Directory

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2010-3129. PoCs published by Dr_IDE, TheLeader.

AI-analyzed exploit summary This exploit demonstrates DLL hijacking in uTorrent <=2.0.3 by listing vulnerable DLLs that can be replaced with malicious payloads. The exploit executes with user credentials when the renamed DLL is placed in the uTorrent directory.

Description

Untrusted search path vulnerability in uTorrent 2.0.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse plugin_dll.dll, userenv.dll, shfolder.dll, dnsapi.dll, dwmapi.dll, iphlpapi.dll, dhcpcsvc.dll, dhcpcsvc6.dll, or rpcrtremote.dll that is located in the same folder as a .torrent or .btsearch file.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Dr_IDE · textlocalwindows
https://www.exploit-db.com/exploits/14748

This exploit demonstrates DLL hijacking in uTorrent <=2.0.3 by listing vulnerable DLLs that can be replaced with malicious payloads. The exploit executes with user credentials when the renamed DLL is placed in the uTorrent directory.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: uTorrent <=2.0.3
No auth needed
Prerequisites: Access to the uTorrent installation directory · Ability to place a malicious DLL in the directory
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by TheLeader · clocalwindows
https://www.exploit-db.com/exploits/14726

This exploit leverages DLL hijacking in uTorrent <= 2.0.3 by placing a malicious 'plugin_dll.dll' in the same directory as a .torrent or .btsearch file. When the file is opened, the DLL executes arbitrary code (e.g., launching calc.exe).

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: uTorrent <= 2.0.3
No auth needed
Prerequisites: Ability to place a malicious DLL and a .torrent/.btsearch file in a directory accessible to the victim
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2164
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/41051
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/14748
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6887
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/14726

Scores

EPSS 0.0740
EPSS Percentile 93.6%

Details

Status published
Products (25)
utorrent/utorrent 1.1.1
utorrent/utorrent 1.1.3
utorrent/utorrent 1.1.4
utorrent/utorrent 1.1.5
utorrent/utorrent 1.1.6
utorrent/utorrent 1.1.7
utorrent/utorrent 1.2
utorrent/utorrent 1.2.1
utorrent/utorrent 1.2.2
utorrent/utorrent 1.7
... and 15 more
Published Aug 26, 2010
Tracked Since Feb 18, 2026