Critical Vulnerability Discovered in uTorrent

**Aurion** · 18.08.08, 13:36

Originally Posted by anon

Logitech's shellcode would run his favorite trojan when the torrent is loaded

damn are u serious ?

nah,dont want that secret bud,I give up

**Logitech** · 18.08.08, 17:21

Originally Posted by anon

Logitech's shellcode would run his favorite trojan when the torrent is loaded

Poison Ivy or ProRAT

witch one should I choose?

Wait a second let's open a poll

**anon** · 18.08.08, 18:00

Never tried Prorat, but I have had some good experiences with PI

Spoiler _:

Also the server is 8kB and written in ASM

But for me the best remote administration tool is RemotelyAnywhere: it takes having just a web browser to be able to control the remote PC (no "client" programs), and can get through firewalls. Too bad it isn't free.

**Logitech** · 18.08.08, 19:06

lets install RealVNC it's easy in use.
You can even change how many bits colour(e.g. 8 bits) so you can even download and do things on that computer:).

Spoiler psst anon:wink2::

**anon** · 18.08.08, 19:16

Originally Posted by Logitech

You can even change how many bits colour(e.g. 8 bits) so you can even download and do things on that computer:).

In RA you can go as low as grayscale (for 56K connections

)

Spoiler _:

**Logitech** · 18.08.08, 19:25

Is RA already server file or does it need to be installed also?

Spoiler AV:

**anon** · 18.08.08, 19:43

Originally Posted by Logitech

Is RA already server file or does it need to be installed also?

Needs to be installed, licenced, configurated, and installs a mirror driver. Not what you'd call undetectable

Spoiler _:

**Logitech** · 18.08.08, 19:47

Spoiler Top Secret:

**anon** · 18.08.08, 19:54

Spoiler _:

**Aurion** · 22.08.08, 00:37

hey Logitech !! u still thinking of picking up ur next victim ?? hehe anyway,try that RA app,its amazing u know (anon was playing chess in my PC 1 week ago

),its just as simple as digging up a PC for injecting ur server file

**anon** · 22.08.08, 00:42

But how can he inject a 12MB msi in a .torrent?

You also need to know who to connect to [IP address], and his Windows username and password, remember?

**Aurion** · 22.08.08, 06:19

OK now im getting some new ideas !!

Hey Logitech,can you compress that shellcode a little bit ? I mean to minimize its actuall running size to less than 1mb,that way it would be reasonable if linked to a pack sized @ 20GB+ (u know once u see a 900KB torrent file,you won't be shocked since you already know you are l33ching alot here),maybe Im having a day dream since I don't know how that shellcode works anyway,but I do know that everything's possible lately,if you could do that with ur shellcode then it would be such a piece of art

**Logitech** · 22.08.08, 15:47

compressing 12mb to 1mb is some hard compress technique.

**anon** · 22.08.08, 17:48

@Reppy: that'd mean modifying the .torrent, which changes its infohash = tracker won't recognize it, 0 peers and seeds as its hash is different, also other peers won't have that torrent. Pretty impossible :/

@Logitech: KGB archiver

But it takes A LOT of time to unpack

**Aurion** · 22.08.08, 19:52

Well,I don't know the parameters of it to tell if it could be done or not but I was wondering since it sounds Cool to inject such a shellcode into a .torrent file without getting it to be Huge !! Anyway,I believe that some one else already discussed such a process before somewhere so lets see if we can find such a modified torrent file someday

P.S: Yeah KGB is a Monster compressor/decompressor regarding large sized files

Thread: Critical Vulnerability Discovered in uTorrent

Thread Tools

Tags for this Thread

Bookmarks

Bookmarks

Posting Permissions