CVE-2015-5474

BitTorrent/utorrent - Command Injection

Title source: llm
STIX 2.1

Description

BitTorrent and uTorrent allow remote attackers to inject command line parameters and execute arbitrary commands via a crafted URL using the (1) bittorrent or (2) magnet protocol.

References (1)

Core 1
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-358/

Scores

EPSS 0.0381
EPSS Percentile 88.7%

Details

CWE
CWE-77
Status published
Products (2)
bittorrent/bittorrent
utorrent/utorrent
Published Aug 13, 2015
Tracked Since Feb 18, 2026