uTorrent contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted packet is presented to the client "Detailed Info" screen, and will result in loss of availability for the application.
Classification
Location:
Remote/Network Access Required
Attack Type:
Denial of Service
Impact:
Loss of Availability
Solution:
Upgrade
Exploit:
Exploit Available
Disclosure:
Vendor Verified
Solution
Upgrade to version 1.7.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Buffer overflow in (1) BitTorrent 6.0 and earlier; and (2) uTorrent 1.7.5 and earlier, and 1.8-alpha-7834 and earlier in the 1.8.x series; on Windows allows remote attackers to cause a denial of service (application crash) via a long Unicode string representing a client version identifier.
altervista.org - http://aluigi.altervista.org