CVE-2008-0071

EPSS 24.43%
Veröffentlicht 16.06.2008 18:41:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle PSIRT-CNA@flexerasoftware.com
CVE-Watchlists
Login
Unerledigt
Login

The Web UI interface in (1) BitTorrent before 6.0.3 build 8642 and (2) uTorrent before 1.8beta build 10524 allows remote attackers to cause a denial of service (application crash) via an HTTP request with a malformed Range header.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 14

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bittorrent ≫ Bittorrent Version <= 6.0.2

Bittorrent ≫ Bittorrent Version3.9.1

Bittorrent ≫ Bittorrent Version4.0.0

Bittorrent ≫ Bittorrent Version4.0.1

Bittorrent ≫ Bittorrent Version4.0.2

Bittorrent ≫ Bittorrent Version4.0.3

Bittorrent ≫ Bittorrent Version4.0.4

Bittorrent ≫ Bittorrent Version4.1.0

Bittorrent ≫ Bittorrent Version4.1.1

Bittorrent ≫ Bittorrent Version4.1.2

Bittorrent ≫ Bittorrent Version4.1.3

Bittorrent ≫ Bittorrent Version4.1.4

Bittorrent ≫ Bittorrent Version4.1.5

Bittorrent ≫ Bittorrent Version4.1.6

Bittorrent ≫ Bittorrent Version4.1.7

Bittorrent ≫ Bittorrent Version4.1.8

Bittorrent ≫ Bittorrent Version4.2.0

Bittorrent ≫ Bittorrent Version4.2.1

Bittorrent ≫ Bittorrent Version4.2.2

Bittorrent ≫ Bittorrent Version4.3.0

Bittorrent ≫ Bittorrent Version4.3.1

Bittorrent ≫ Bittorrent Version4.3.2

Bittorrent ≫ Bittorrent Version4.3.3

Bittorrent ≫ Bittorrent Version4.3.4

Bittorrent ≫ Bittorrent Version4.3.5

Bittorrent ≫ Bittorrent Version4.3.6

Bittorrent ≫ Bittorrent Version4.4.0

Bittorrent ≫ Bittorrent Version4.4.1

Bittorrent ≫ Bittorrent Version4.9.2

Bittorrent ≫ Bittorrent Version4.9.3

Bittorrent ≫ Bittorrent Version4.9.4

Bittorrent ≫ Bittorrent Version4.9.5

Bittorrent ≫ Bittorrent Version4.9.6

Bittorrent ≫ Bittorrent Version4.9.7

Bittorrent ≫ Bittorrent Version4.9.8

Bittorrent ≫ Bittorrent Version4.9.9

Bittorrent ≫ Bittorrent Version4.20.0

Bittorrent ≫ Bittorrent Version4.20.1

Bittorrent ≫ Bittorrent Version4.20.2

Bittorrent ≫ Bittorrent Version4.20.4

Bittorrent ≫ Bittorrent Version4.20.6

Bittorrent ≫ Bittorrent Version4.20.7

Bittorrent ≫ Bittorrent Version4.20.8

Bittorrent ≫ Bittorrent Version4.20.9

Bittorrent ≫ Bittorrent Version4.22.0

Bittorrent ≫ Bittorrent Version4.22.1

Bittorrent ≫ Bittorrent Version4.22.4

Bittorrent ≫ Bittorrent Version4.24.0

Bittorrent ≫ Bittorrent Version4.24.2

Bittorrent ≫ Bittorrent Version4.26.0

Bittorrent ≫ Bittorrent Version4.27.1

Bittorrent ≫ Bittorrent Version4.27.2

Bittorrent ≫ Bittorrent Version5.0.0

Bittorrent ≫ Bittorrent Version5.0.1

Bittorrent ≫ Bittorrent Version5.0.2

Bittorrent ≫ Bittorrent Version5.0.3

Bittorrent ≫ Bittorrent Version5.0.4

Bittorrent ≫ Bittorrent Version5.0.5

Bittorrent ≫ Bittorrent Version5.0.6

Bittorrent ≫ Bittorrent Version5.0.7

Bittorrent ≫ Bittorrent Version5.0.8

Bittorrent ≫ Bittorrent Version5.0.9

Bittorrent ≫ Bittorrent Version5.2.0

Bittorrent ≫ Bittorrent Version6.0

Bittorrent ≫ Bittorrent Version6.0.1

Utorrent ≫ Utorrent Version <= 1.7.7

Utorrent ≫ Utorrent Version1.1.1

Utorrent ≫ Utorrent Version1.1.3

Utorrent ≫ Utorrent Version1.1.4

Utorrent ≫ Utorrent Version1.1.5

Utorrent ≫ Utorrent Version1.1.6

Utorrent ≫ Utorrent Version1.1.7

Utorrent ≫ Utorrent Version1.2

Utorrent ≫ Utorrent Version1.2.1

Utorrent ≫ Utorrent Version1.2.2

Utorrent ≫ Utorrent Version1.3

Utorrent ≫ Utorrent Version1.4

Utorrent ≫ Utorrent Version1.4.2

Utorrent ≫ Utorrent Version1.5

Utorrent ≫ Utorrent Version1.6

Utorrent ≫ Utorrent Version1.7

Utorrent ≫ Utorrent Version1.7.1

Utorrent ≫ Utorrent Version1.7.2

Utorrent ≫ Utorrent Version1.7.3

Utorrent ≫ Utorrent Version1.7.4

Utorrent ≫ Utorrent Version1.7.5

Utorrent ≫ Utorrent Version1.7.6

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	24.43%	0.959

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://secunia.com/advisories/28703

Vendor Advisory

http://secunia.com/advisories/30605

Vendor Advisory

http://secunia.com/secunia_research/2008-7/advisory/

Vendor Advisory

http://securityreason.com/securityalert/3943

http://securitytracker.com/id?1020266

http://www.securityfocus.com/archive/1/493269/100/0/threaded

http://www.securityfocus.com/bid/29661

Patch

http://www.securitytracker.com/id?1020265