Google's safety researcher at Project Zero discovered a serious remote code execution vulnerability inwards both the 'μTorrent desktop app for Windows' in addition to newly launched 'μTorrent Web' that allows users to download in addition to current torrents straight into their spider web browser.
μTorrent Classic in addition to μTorrent Web apps run inwards the background on the Windows car in addition to kickoff a locally hosted HTTP RPC server on ports 10000 in addition to 19575, respectively, using which users tin flame access its interfaces over whatever spider web browser.
However, Project Zero researcher Tavis Ormandy establish that several issues amongst these RPC servers could let remote attackers to receive got command of the torrent download software amongst fiddling user interaction.
According to Ormandy, uTorrent apps are vulnerable to a hacking technique called the "domain get upward organisation rebinding" that could let whatever malicious website a user visits to execute malicious code on user's reckoner remotely.
"This requires approximately uncomplicated DNS rebinding to assail remotely, but i time you lot receive got the clandestine you lot tin flame exactly modify the directory torrents are saved to, in addition to hence download whatever file anywhere writable," Ormandy explained.
Proof-of-Concept Exploits for uTorrent Software Released Publicly
Last month, Ormandy demonstrated same assail technique against the Transmission BitTorrent app.
Ormandy reported BitTorrent of the issues amongst the uTorrent customer inwards Nov 2017 amongst a 90-days disclosure deadline, but a piece was made world on Tuesday—that's most lxxx days later the initial disclosure.
What's more? The re-issued novel safety patches the same twenty-four threescore minutes current later Ormandy establish that his exploits continued to run successfully inwards the default configuration amongst a small-scale tweak.
"This final result is withal exploitable," Ormandy said. "The vulnerability is at nowadays world because a piece is available, in addition to BitTorrent receive got already exhausted their ninety days anyway."
"I run into no other selection for affected users but to terminate using uTorrent Web in addition to contact BitTorrent in addition to asking a comprehensive patch."
Patch your uTorrent Software NOW!
The society assured its users that all vulnerabilities reported past times Ormandy it 2 of its products had been addressed amongst the free of:
- μTorrent Stable 3.5.3.44358
- BitTorrent Stable 7.10.3.44359
- μTorrent Beta 3.5.3.44352
- μTorrent Web 0.12.0.502
All users are urged to update their software immediately.
