VIR Vulnerability Intelligence Relay

CVE-2012-6129

high
Published 2013-04-03 · Modified 2026-04-29
CVSS v3
CVSS v2
7.5
VIR risk
7.5

Description

Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted "micro transport protocol packets."

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-6129

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://trac.transmissionbt.com/changeset/13646

OS impact
OSVersionStatusFixed in
ubuntu ubuntu11.10affected
ubuntu ubuntu12.04affected
ubuntu ubuntu12.10affected
fedora fedora16affected
debian debianbookwormfixed2.52-3+nmu1
debian debianbullseyefixed2.52-3+nmu1
debian debianforkyfixed2.52-3+nmu1
debian debiansidfixed2.52-3+nmu1
debian debiantrixiefixed2.52-3+nmu1

Application impact
VendorProductVersionsFixed
transmissionbttransmission{"endIncluding":"2.73"}
transmissionbttransmission0.1
transmissionbttransmission0.2
transmissionbttransmission0.3
transmissionbttransmission0.4
transmissionbttransmission0.5
transmissionbttransmission0.6
transmissionbttransmission0.6.1
transmissionbttransmission0.70
transmissionbttransmission0.71
transmissionbttransmission0.72
transmissionbttransmission0.80
transmissionbttransmission0.81
transmissionbttransmission0.82
transmissionbttransmission0.90
transmissionbttransmission0.91
transmissionbttransmission0.92
transmissionbttransmission0.93
transmissionbttransmission0.94
transmissionbttransmission0.95
transmissionbttransmission0.96
transmissionbttransmission1.00
transmissionbttransmission1.01
transmissionbttransmission1.02
transmissionbttransmission1.2
transmissionbttransmission1.03
transmissionbttransmission1.04
transmissionbttransmission1.05
transmissionbttransmission1.06
transmissionbttransmission1.10
transmissionbttransmission1.11
transmissionbttransmission1.20
transmissionbttransmission1.21
transmissionbttransmission1.22
transmissionbttransmission1.30
transmissionbttransmission1.31
transmissionbttransmission1.32
transmissionbttransmission1.33
transmissionbttransmission1.34
transmissionbttransmission1.40
transmissionbttransmission1.41
transmissionbttransmission1.42
transmissionbttransmission1.50
transmissionbttransmission1.51
transmissionbttransmission1.52
transmissionbttransmission1.53
transmissionbttransmission1.54
transmissionbttransmission1.60
transmissionbttransmission1.61
transmissionbttransmission1.70
transmissionbttransmission1.71
transmissionbttransmission1.72
transmissionbttransmission1.73
transmissionbttransmission1.74
transmissionbttransmission1.75
transmissionbttransmission1.76
transmissionbttransmission1.77
transmissionbttransmission1.80
transmissionbttransmission1.81
transmissionbttransmission1.82
transmissionbttransmission1.83
transmissionbttransmission1.90
transmissionbttransmission1.91
transmissionbttransmission1.92
transmissionbttransmission1.93
transmissionbttransmission2.00
transmissionbttransmission2.01
transmissionbttransmission2.02
transmissionbttransmission2.03
transmissionbttransmission2.04
transmissionbttransmission2.10
transmissionbttransmission2.11
transmissionbttransmission2.12
transmissionbttransmission2.13
transmissionbttransmission2.20
transmissionbttransmission2.21
transmissionbttransmission2.22
transmissionbttransmission2.30
transmissionbttransmission2.31
transmissionbttransmission2.32
transmissionbttransmission2.33
transmissionbttransmission2.40
transmissionbttransmission2.41
transmissionbttransmission2.42
transmissionbttransmission2.50
transmissionbttransmission2.51
transmissionbttransmission2.52
transmissionbttransmission2.60
transmissionbttransmission2.61
transmissionbttransmission2.70
transmissionbttransmission2.71
transmissionbttransmission2.72

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.