Just FYI, I've narrowed down Deluge having an exploit in its network protocol (the TCP port you open to the network).
viewtopic.php?f=7&t=55166
If this is true, it would allow any remote actor to execute code on your machine,
Search found 2 matches
- Wed Nov 28, 2018 5:35 am
- Forum: Support
- Topic: [WebUI Vulnerability] Malicious plugin "booster" found on my system
- Replies: 14
- Views: 161734
- Wed Nov 28, 2018 5:29 am
- Forum: Support
- Topic: Found Backdoors / Installation and Execution of Software (e.g. RansomWare)
- Replies: 0
- Views: 2958
Found Backdoors / Installation and Execution of Software (e.g. RansomWare)
OS: Windows Server 2012 (fully patched) Deluge Version: (hard to tell, as it is all encrypted now.. Looks like 1.3.14 perhaps?) Web UI: Disabled / not in use, nor exposed Was hit with remote code that executed on my Torrent VM (RansomWare, fully encrypted the system). Now, let me be clear... Deluge ...