utln Posted May 22, 2004 Posted May 22, 2004 The following was taken from a Full Disclosure posting by badpack3t,SP Research Labs Advisory x12-----------------------------BNBT BitTorrent Tracker Denial Of Service-----------------------------------------Versions:cbtt75_20040515Beta 7.5 Release 2 and prior versionsVendors: http://bnbt.go-dedicated.com/http://bnbteasytracker.sourceforge.net/http://sourceforge.net/projects/bnbtusermods/Date Released - 5.21.2004------------------------------------Product Description from the vendor:BNBT was written by Trevor Hogan. BNBT is a complete port of the original Python BitTorrent tracker to C++ for speed and efficiency. BNBT also offers many additional features beyond the original Python BitTorrent tracker, plus it's easy to use and customizable. BNBT is covered under the GNU Lesser General Public License (LGPL).--------Details:A specifically crafted HTTP GET request which contains 'Authorization: Basic A==' will cause the BNBT server to crash. It may be possible to execute arbitrary code. Previous versions are also affected by this vulnerability. The bug is located in util.cpp in the Util_DecodeHTTPAuth function. --------Exploit:Attached to this advisory is very basic PoC code which only causes the BNBT server to crash.--------------Tested on: WindowsXP SP1peace out,--------------------------badpack3twww.security-protocols.com--------------------------
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now