lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Thu, 15 Feb 2007 20:43:34 -0600 (CST) From: Gadi Evron <ge@...uxbox.org> To: bugtraq@...urityfocus.com Cc: full-disclosure@...ts.grok.org.uk Subject: utorrent issue? Hi, this did not hit bugtraq yet for some reason and it is serious. In AV circles we are all worried about the abuse potential for this in malware. uTorrent 1.6 build 474 (announce) Key Remote Heap Overflow Exploit http://milw0rm.com/exploits/3296 Further Burak CIFTER wrote on this concern, comparing the utorrent vulnerability to the SunOS one and how our security perceptions change: http://blogs.securiteam.com/index.php/archives/825 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists