The bencoding parser in BitTorrent uTorrent through 3.5.5 (build 45505) misparses nested bencoded dictionaries, which allows a remote attacker to cause a denial of service.
References
Link | Resource |
---|---|
https://blog.whtaguy.com/2020/09/utorrent-cve-2020-8437-vulnerability.html | Exploit Third Party Advisory |
https://forum.utorrent.com/forum/13-announcements/ | Vendor Advisory |
https://twitter.com/va_start | Third Party Advisory |
https://utclient.utorrent.com/offers/beta_release_notes/release_notes.html | Release Notes Vendor Advisory |
https://blog.whtaguy.com/2020/09/utorrent-cve-2020-8437-vulnerability.html | Exploit Third Party Advisory |
https://forum.utorrent.com/forum/13-announcements/ | Vendor Advisory |
https://twitter.com/va_start | Third Party Advisory |
https://utclient.utorrent.com/offers/beta_release_notes/release_notes.html | Release Notes Vendor Advisory |
Configurations
History
21 Nov 2024, 05:38
Type | Values Removed | Values Added |
---|---|---|
References | () https://blog.whtaguy.com/2020/09/utorrent-cve-2020-8437-vulnerability.html - Exploit, Third Party Advisory | |
References | () https://forum.utorrent.com/forum/13-announcements/ - Vendor Advisory | |
References | () https://twitter.com/va_start - Third Party Advisory | |
References | () https://utclient.utorrent.com/offers/beta_release_notes/release_notes.html - Release Notes, Vendor Advisory |
03 May 2022, 14:29
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-476 | |
References | (MISC) https://blog.whtaguy.com/2020/09/utorrent-cve-2020-8437-vulnerability.html - Exploit, Third Party Advisory |
Information
Published : 2020-03-02 19:15
Updated : 2024-11-21 05:38
NVD link : CVE-2020-8437
Mitre link : CVE-2020-8437
CVE.ORG link : CVE-2020-8437
JSON object : View
Products Affected
bittorrent
- utorrent
CWE
CWE-476
NULL Pointer Dereference