Test ID:	1.3.6.1.4.1.25623.1.0.902240
Category:	General
Title:	uTorrent File Opening Insecure Library Loading Vulnerability
Summary:	Check for the version of uTorrent
Description:	Overview: This host is installed with uTorrent and is prone to insecure library loading vulnerability. Vulnerability Insight: The flaw is due to the application insecurely loading certain librairies from the current working directory, which could allow attackers to execute arbitrary code by tricking a user into opening a Torrent file. Impact: Successful exploitation will allow the attackers to execute arbitrary code and conduct DLL hijacking attacks. Impact Level: Application. Affected Software: uTorrent version 2.0.3 and prior Fix: Upgrade to uTorrent version 2.0.4 or later, For updates refer to http://www.utorrent.com/downloads References: http://secunia.com/advisories/41051 http://www.exploit-db.com/exploits/14726/ http://www.vupen.com/english/advisories/2010/2164
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3129 http://www.exploit-db.com/exploits/14726 http://www.exploit-db.com/exploits/14748 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6887 http://secunia.com/advisories/41051 http://www.vupen.com/english/advisories/2010/2164
Copyright	Copyright (C) 2010 SecPod

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: