CVE-2010-3129

Published: Aug 26, 2010Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in uTorrent 2.0.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse plugin_dll.dll, userenv.dll, shfolder.dll, dnsapi.dll, dwmapi.dll, iphlpapi.dll, dhcpcsvc.dll, dhcpcsvc6.dll, or rpcrtremote.dll that is located in the same folder as a .torrent or .btsearch file.

Affected (26)

Products: Utorrent: Utorrent

Utorrent

1 product

Utorrent

Configuration A

26 vulnerable

Vulnerable Software	Affected Versions
Utorrent Utorrent	Version 1.1.1
Utorrent Utorrent	Version 1.1.3
Utorrent Utorrent	Version 1.1.4
Utorrent Utorrent	Version 1.1.5
Utorrent Utorrent	Version 1.1.6
Utorrent Utorrent	Version 1.1.7
Utorrent Utorrent	Version 1.2.1
Utorrent Utorrent	Version 1.2.2
Utorrent Utorrent	Version 1.2
Utorrent Utorrent	Version 1.7.1
Utorrent Utorrent	Version 1.7.2
Utorrent Utorrent	Version 1.7.4
Utorrent Utorrent	Version 1.7.5
Utorrent Utorrent	Version 1.7.6
Utorrent Utorrent	Version 1.7
Utorrent Utorrent	Version 1.8.1
Utorrent Utorrent	Version 1.8.1 rc1
Utorrent Utorrent	Version 1.8.2
Utorrent Utorrent	Version 1.8.3
Utorrent Utorrent	Version 1.8.4
Utorrent Utorrent	Version 1.8.5
Utorrent Utorrent	Version 1.8
Utorrent Utorrent	Version 2.0.1
Utorrent Utorrent	Version 2.0.2
Utorrent Utorrent	Version 2.0.3
Utorrent Utorrent	Version 2.0