Summary
This host is installed with uTorrent and is prone to insecure library loading vulnerability.
Impact
Successful exploitation will allow the attackers to execute arbitrary code and conduct DLL hijacking attacks.
Impact Level: Application.
Solution
Upgrade to uTorrent version 2.0.4 or later,
For updates refer to http://www.utorrent.com/downloads
Insight
The flaw is due to the application insecurely loading certain librairies from the current working directory, which could allow attackers to execute arbitrary code by tricking a user into opening a Torrent file.
Affected
uTorrent version 2.0.3 and prior
References
Severity
Classification
-
CVE CVE-2010-3129 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities