Intrusion Prevention

BitComet.URI.Buffer.Overflow

Description

It indicates a possible exploit of buffer overflow vulnerability in BitComet. BitComet is one of the most popular P2P Client for file sharing, which uses bittorrent protocol.There is a bug in BitComet, a remote attacker could construct a special .torrent file and put it on any bt publish web site. When a user downloads the .torrent file and clicks on publishers name, BitComet will crash. An attacker can run arbitrary Command on victims host by specially crafted .torrent file.

Affected Products

BitComet v0.60

Impact

Compromise of the affected system.

Recommended Actions

Upgrade to version BitComet v0.61 2006.1.10 or later.

Other References

1