BitComet URI Handling Remote Denial of Service Vulnerability
BID:30255
Info
BitComet URI Handling Remote Denial of Service Vulnerability
| Bugtraq ID: | 30255 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 16 2008 12:00AM |
| Updated: | Jul 17 2008 07:48PM |
| Credit: | Shinnok |
| Vulnerable: |
BitComet BitComet 1.02 |
| Not Vulnerable: | |
Discussion
BitComet URI Handling Remote Denial of Service Vulnerability
BitComet is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to crash the application. Given the nature of this vulnerability, the attacker may also be able to execute arbitrary code, but this has not been confirmed.
BitComet 1.02 is vulnerable; other versions may also be affected.
BitComet is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to crash the application. Given the nature of this vulnerability, the attacker may also be able to execute arbitrary code, but this has not been confirmed.
BitComet 1.02 is vulnerable; other versions may also be affected.
Exploit / POC
BitComet URI Handling Remote Denial of Service Vulnerability
An attacker can exploit this issue by enticing an unsuspecting victim to open a malicious batch file with the affected application.
The following exploit code is available:
An attacker can exploit this issue by enticing an unsuspecting victim to open a malicious batch file with the affected application.
The following exploit code is available:
Solution / Fix
BitComet URI Handling Remote Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
BitComet URI Handling Remote Denial of Service Vulnerability
References:
References:
- BitComet Homepage (BitComet)