Become a Site Supporter and Never see Ads again!

Author Topic: uTorrent Vulnerability  (Read 2595 times)

0 Members and 1 Guest are viewing this topic.

Offline rigpimp

  • Site Supporter
  • Trade Count: (14)
  • Needs to get out more...
  • *
  • Posts: 2113
  • Gender: Male
  • Jarts don't kill people!
uTorrent Vulnerability
« on: February 21, 2018, 06:07:46 PM »
Bummer for those of us that stopped using Qbittorrent for randomly pinging ports.  This sounds like it has the potential to be much more malicious.

https://torrentfreak.com/bittorrent-client-utorrent-suffers-security-vulnerability-180220/
Mics: Schoeps MK5 G MP, Schoeps CCM 4 Lg MP, Schoeps MK8 MP, nBob cables > PFA, KCY 250/5 > PFA
Pre/A>D/P48: Sonosax SX/M2, Sonosax SX/M2-LS, E.A.A. PSP-2, Naiant Tinybox, Neumann BS48i-2 (for sale)
Recorders: Sound Devices Mixpre-6, Sony PCM-M10
Playback: McIntosh MC 2105 > McIntosh MX 130 > Von Schweikert VR-4 JR
http://archive.org/bookmarks/kskreider

Offline heathen

  • Trade Count: (16)
  • Taperssection All-Star
  • ****
  • Posts: 1517
Re: uTorrent Vulnerability
« Reply #1 on: February 21, 2018, 06:17:32 PM »
Quote
Update: The vulnerability affects all unpatched uTorrent versions, not just those that have the Web UI enabled.

Bummer for people like me who are using an old version of uTorrent from before it started going downhill.  When I was reading the article I was hoping the vulnerability was only in the newer version(s).
Mics: Core Sound TetraMic | AT4031s | AT AE5100s | AT853s (C/SC) | Line Audio CM3s | DPA 4061s | CA-14 omnis | Studio Projects CS5
Pre: CA9200
Decks: Zoom F8 | Roland R-05 | Tascam DR-2d

Offline The Other Chris

  • Trade Count: (16)
  • Taperssection All-Star
  • ****
  • Posts: 1512
  • Gender: Male
    • My list:
Re: uTorrent Vulnerability
« Reply #2 on: February 21, 2018, 06:32:15 PM »
I use an older version too, any suggestions on a replacement?

Offline Fatah Ruark (aka MIKE B)

  • Trade Count: (9)
  • Needs to get out more...
  • *****
  • Posts: 9119
  • Gender: Male
  • I dream in beige.
    • sloppy.art.ink
Re: uTorrent Vulnerability
« Reply #3 on: February 21, 2018, 06:54:52 PM »
If you disable the recommended settings (WebUI and net.discoverable setting) I don't think you will have an issue (at least a known one).

That being said most people are using older versions that aren't being patched.

I use rtorrent with rutorrent as a WebUI. It works great. Not as easy to set up as uTorrent, but handles a shit ton of torrents easily.
-24      -12              -6             0       OVER
||||||||||||||||||||||||||| []  
|||||||||||||||||||||||||||| []

||| MICS:  Beyer CK930 ~ Nevaton MCE400 ~ Countryman B3 |||
||| CABLES: Kind Kables |||
||| PREAMPS: Naiant Tinybox | Naiant Littlebox | Naiant IPA | Church BB |||
||| DECKS: Sound Devices MixPre6 | Sony M10 |||
||| PLAYBACK: Outlaw Audio RR2150 > Epos ELS8 |||
||| PHOTO: Sony a6000 | Sony 16-50 | Sony 55-210 | Rokinon 14mm | Rokinon 8mm |||
|||Concert History || LMA Recordings || Live YouTube Channel ||

Offline voltronic

  • Trade Count: (28)
  • Needs to get out more...
  • *****
  • Posts: 2558
  • Gender: Male
Re: uTorrent Vulnerability
« Reply #4 on: February 21, 2018, 08:16:07 PM »
Deluge is the way to go, IMHO.
DPA 4061 | Line Audio CM3 | Naiant X-Q
Naiant PFAs | Shure FP24
Tascam DR-70D JWMod | Sony PCM-M10

Tascam DR-70D FAQ
Team Line Audio
Quote
I am hitting my head against the walls, but the walls are giving way.    ///    If a composer could say what he had to say in words he would not bother trying to say it in music.
- Gustav Mahler

Offline unidentified

  • Trade Count: (7)
  • Taperssection Newbie
  • *
  • Posts: 22
Re: uTorrent Vulnerability
« Reply #5 on: February 21, 2018, 10:06:57 PM »
If you disable the recommended settings (WebUI and net.discoverable setting) I don't think you will have an issue (at least a known one).

That being said most people are using older versions that aren't being patched.

I use rtorrent with rutorrent as a WebUI. It works great. Not as easy to set up as uTorrent, but handles a shit ton of torrents easily.

I am more than a bit confused here.  Would running uTorrent 2.0.4 without enabling WebUI be enough to guard against this flaw?  If not, what other settings could be disabled and how would doing so affect  uTorrent's basic functionality?  Many thanks!

Offline Fatah Ruark (aka MIKE B)

  • Trade Count: (9)
  • Needs to get out more...
  • *****
  • Posts: 9119
  • Gender: Male
  • I dream in beige.
    • sloppy.art.ink
Re: uTorrent Vulnerability
« Reply #6 on: February 21, 2018, 10:11:29 PM »
I got this from a "famous torrent site":

Quote
Recently, two security bugs were found in uTorrent in how it sets up its web interface (affecting both uTorrent Web and uTorrent Classic). The full bug report can be found here: https://bugs.chromium.org/p/project-zero/issues/detail?id=1524 More information can be found here: https://torrentfreak.com/bittorrent-client-utorrent-suffers-security-vulnerability-180220/

uTorrent web
Basically, this security hole allows an attacker to remotely get access to your uTorrent via the WebUI, and use that for malicious activities, like downloading viruses to your computer. Because of this, I strongly recommend that all users currently using the uTorrent webUI, disable it for the time being. (This applies to both uTorrent web and the WebUI inside 'normal' versions of uTorrent)

uTorrent Classic
Even if you have the WebUI disabled, there is another security bug that can be exploited. Among other things, this bug allows for crashing of uTorrent, and stealing of torrents. to prevent this, I strongly recommend that all uTorrent users disable the 'net.discoverable' setting. Some older uTorrent versions might not have this option. If you cannot find it, you might be safe from this bug.

After applying the setting, you should restart the client. (File>Exit, then starting it again)




« Last Edit: February 21, 2018, 10:13:20 PM by Fatah Ruark (aka MIKE B) »
-24      -12              -6             0       OVER
||||||||||||||||||||||||||| []  
|||||||||||||||||||||||||||| []

||| MICS:  Beyer CK930 ~ Nevaton MCE400 ~ Countryman B3 |||
||| CABLES: Kind Kables |||
||| PREAMPS: Naiant Tinybox | Naiant Littlebox | Naiant IPA | Church BB |||
||| DECKS: Sound Devices MixPre6 | Sony M10 |||
||| PLAYBACK: Outlaw Audio RR2150 > Epos ELS8 |||
||| PHOTO: Sony a6000 | Sony 16-50 | Sony 55-210 | Rokinon 14mm | Rokinon 8mm |||
|||Concert History || LMA Recordings || Live YouTube Channel ||

Offline Gordon

  • Trade Count: (20)
  • Needs to get out more...
  • *****
  • Posts: 10597
  • Gender: Male
    • my list
Re: uTorrent Vulnerability
« Reply #7 on: February 22, 2018, 09:40:40 AM »
Bummer for those of us that stopped using Qbittorrent for randomly pinging ports.

I've been using utorrent 2.2.1 for every and thought about trying Q.  has the issue you're referring to been fixed?


Yes I know I could disable webui etc (or wait for the bloated update) but I run utorrent on my headless home server and rely on the webui to load torrents, stop/start etc.
Neumann ak40 > Nick mod lc3 > Naiant PFA or km140 > Sound Devices MixPre-6

https://archive.org/details/fav-gordonlw

Offline if_then_else

  • Trade Count: (0)
  • Taperssection Member
  • ***
  • Posts: 287
Re: uTorrent Vulnerability
« Reply #8 on: February 22, 2018, 12:12:29 PM »
FWIW: There are some web-ui based frontends for Deluge and Transmission, too.

Offline rocksuitcase

  • Trade Count: (1)
  • Needs to get out more...
  • *****
  • Posts: 4993
  • Gender: Male
    • RockSuitcase: stage photography
Re: uTorrent Vulnerability
« Reply #9 on: February 22, 2018, 01:38:07 PM »
thanks for this. I stopped using utorrent last summer and replaced it with qbitorrent. Since I don't use it I just uninstalled it rather than tweak the settings. Thanks again.     :coolguy:
music IS love

When you get confused, listen to the music play!

Mics:         AKG460|CK61|CK1|CK3|CK8|Beyer M 201E
Recorders:Marantz PMD661 OADE Concert mod; Tascam DR680 MKI

Offline Gordon

  • Trade Count: (20)
  • Needs to get out more...
  • *****
  • Posts: 10597
  • Gender: Male
    • my list
Re: uTorrent Vulnerability
« Reply #10 on: February 22, 2018, 04:22:10 PM »
FWIW: There are some web-ui based frontends for Deluge and Transmission, too.

saw that and messed with Deluge a little.  I don't have time to figure out command lines for install/configs of plugins etc.  I want simple and easy and qbitorrent seems to fit the bill. 
Neumann ak40 > Nick mod lc3 > Naiant PFA or km140 > Sound Devices MixPre-6

https://archive.org/details/fav-gordonlw

Offline rigpimp

  • Site Supporter
  • Trade Count: (14)
  • Needs to get out more...
  • *
  • Posts: 2113
  • Gender: Male
  • Jarts don't kill people!
Re: uTorrent Vulnerability
« Reply #11 on: February 22, 2018, 04:41:27 PM »
I am unsure how, or if, this was resolved but for those considering Qbitorrent:

http://taperssection.com/index.php?topic=183133.0
Mics: Schoeps MK5 G MP, Schoeps CCM 4 Lg MP, Schoeps MK8 MP, nBob cables > PFA, KCY 250/5 > PFA
Pre/A>D/P48: Sonosax SX/M2, Sonosax SX/M2-LS, E.A.A. PSP-2, Naiant Tinybox, Neumann BS48i-2 (for sale)
Recorders: Sound Devices Mixpre-6, Sony PCM-M10
Playback: McIntosh MC 2105 > McIntosh MX 130 > Von Schweikert VR-4 JR
http://archive.org/bookmarks/kskreider

Offline Gordon

  • Trade Count: (20)
  • Needs to get out more...
  • *****
  • Posts: 10597
  • Gender: Male
    • my list
Re: uTorrent Vulnerability
« Reply #12 on: February 22, 2018, 04:56:33 PM »
I am unsure how, or if, this was resolved but for those considering Qbitorrent:

http://taperssection.com/index.php?topic=183133.0

Did you verify that other users had the same issue?  Google did not turn up much for me.  Are you sure it wasn't do to a connected peer in one of your torrents?  I've seen similar behavior on utorrent due to someone in the swarm.

I've tested the latest and 3.3.16 today and malwarebytes has not detected anything.
Neumann ak40 > Nick mod lc3 > Naiant PFA or km140 > Sound Devices MixPre-6

https://archive.org/details/fav-gordonlw

Offline rigpimp

  • Site Supporter
  • Trade Count: (14)
  • Needs to get out more...
  • *
  • Posts: 2113
  • Gender: Male
  • Jarts don't kill people!
Re: uTorrent Vulnerability
« Reply #13 on: February 22, 2018, 05:00:40 PM »
I am unsure how, or if, this was resolved but for those considering Qbitorrent:

http://taperssection.com/index.php?topic=183133.0

Did you verify that other users had the same issue?  Google did not turn up much for me.  Are you sure it wasn't do to a connected peer in one of your torrents?  I've seen similar behavior on utorrent due to someone in the swarm.

I've tested the latest and 3.3.16 today and malwarebytes has not detected anything.

It has been a while but I am not sure that I was even running any torrents at the point I upgraded.  Hopefully it has all been worked out, whatever it was.
Mics: Schoeps MK5 G MP, Schoeps CCM 4 Lg MP, Schoeps MK8 MP, nBob cables > PFA, KCY 250/5 > PFA
Pre/A>D/P48: Sonosax SX/M2, Sonosax SX/M2-LS, E.A.A. PSP-2, Naiant Tinybox, Neumann BS48i-2 (for sale)
Recorders: Sound Devices Mixpre-6, Sony PCM-M10
Playback: McIntosh MC 2105 > McIntosh MX 130 > Von Schweikert VR-4 JR
http://archive.org/bookmarks/kskreider

Offline tim in jersey

  • Site Supporter
  • Trade Count: (8)
  • Needs to get out more...
  • *
  • Posts: 3394
  • Gender: Male
Re: uTorrent Vulnerability
« Reply #14 on: February 22, 2018, 10:15:56 PM »

 

RSS | Mobile
Page created in 0.218 seconds with 43 queries.
© 2002-2018 Taperssection.com
Powered by SMF