Test ID:	1.3.6.1.4.1.25623.1.0.66158
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: ctorrent
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory.
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: ctorrent CVE-2009-1759 Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Torrent file containing a long path. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1759 BugTraq ID: 34584 http://www.securityfocus.com/bid/34584 Debian Security Information: DSA-1817 (Google Search) http://www.debian.org/security/2009/dsa-1817 https://www.exploit-db.com/exploits/8470 https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01010.html https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01102.html http://www.openwall.com/lists/oss-security/2009/05/20/3 http://secunia.com/advisories/34752 http://secunia.com/advisories/35499 http://secunia.com/advisories/36471 http://www.vupen.com/english/advisories/2009/1092 XForce ISS Database: ctorrent-btfiles-bo(49959) https://exchange.xforce.ibmcloud.com/vulnerabilities/49959
Copyright	Copyright (C) 2009 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.