Linux Lite Forums

General => Security & Bug Fixes => Topic started by: Ottawagrant on January 17, 2018, 08:41:31 AM

Title: BitTorrent Client Transmission Suffers Remote Takeover Vulnerability
Post by: Ottawagrant on January 17, 2018, 08:41:31 AM
And 2018 just rolls on:
"Transmission, one of the most used non-commercial BitTorrent clients, has a vulnerability that allows outsiders to gain control over people's computers. The flaw affects users who have remote control enabled with the default password. The vulnerability was revealed by a Google researcher, who plans to disclose similar remote code execution flaws in other torrent clients as well."

Read all about it:
https://torrentfreak.com/bittorrent-client-transmission-suffers-remote-takeover-vulnerability-180116/
Title: Re: BitTorrent Client Transmission Suffers Remote Takeover Vulnerability
Post by: Scott on January 17, 2018, 10:48:18 AM
Thanks for the information on Transmission. In the meantime there are possible alternatives. I didn't notice Deluge on the list (please correct me if I'm wrong) and it can be installed from Lite Software - torrent software option.
Title: Re: BitTorrent Client Transmission Suffers Remote Takeover Vulnerability
Post by: JmaCWQ on January 18, 2018, 01:37:00 AM
Quote
The flaw affects users who have remote control enabled with the default password.

So long as you don't use remote control with the default password it shouldn't be a risk/issue.
Title: Re: BitTorrent Client Transmission Suffers Remote Takeover Vulnerability
Post by: NN on May 18, 2018, 06:19:01 PM
...