CVE-2019-25586
Denial of Service via Buffer Overflow in Deluge
Publication date: 2026-03-22
Last updated on: 2026-03-24
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| deluge-torrent | deluge | 1.3.15 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-466 | A function can return a pointer to memory that is outside of the buffer that the pointer is expected to reference. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': "CVE-2019-25586 is a denial of service vulnerability in Deluge version 1.3.15 and earlier. It occurs because the application improperly handles an excessively long string input in the 'From URL' field when adding a torrent."}, {'type': 'paragraph', 'content': 'Local attackers can exploit this by pasting a buffer of 5000 characters into the URL field, which causes the application to crash due to a buffer overflow condition.'}, {'type': 'paragraph', 'content': 'This vulnerability is classified under CWE-466, involving the return of a pointer value outside the expected range, leading to application instability.'}] [1, 2]
How can this vulnerability impact me? :
This vulnerability can cause the Deluge application to crash, resulting in a denial of service.
Since the attack requires local access and no privileges or user interaction, an attacker with local access can disrupt the availability of the application.
The impact is primarily on availability, with a high severity score (CVSS v4 base score of 6.9), meaning the application becomes unusable until restarted or fixed.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': 'This vulnerability can be detected by attempting to reproduce the crash condition in a controlled environment. Specifically, a local attacker can trigger the denial of service by inputting an excessively long string (e.g., 5000 characters) into the "From URL" field when adding a torrent in the Deluge client.'}, {'type': 'paragraph', 'content': 'A practical detection method involves creating a text file containing 5000 "A" characters and then pasting this string into the "From URL" field in Deluge 1.3.15. If the application crashes, the vulnerability is present.'}, {'type': 'paragraph', 'content': 'The steps to test this are:'}, {'type': 'list_item', 'content': 'Create a text file (e.g., deluge_url.txt) with 5000 "A" characters.'}, {'type': 'list_item', 'content': 'Copy the contents of this file to the clipboard.'}, {'type': 'list_item', 'content': 'Open the Deluge client executable.'}, {'type': 'list_item', 'content': 'Navigate to File > Add Torrent > URL.'}, {'type': 'list_item', 'content': 'Paste the clipboard content into the "From URL" field.'}, {'type': 'list_item', 'content': 'Click OK and observe if the application crashes.'}] [2]
What immediate steps should I take to mitigate this vulnerability?
[{'type': 'paragraph', 'content': 'Immediate mitigation steps include avoiding the use of the "From URL" field with untrusted or excessively long input strings in Deluge 1.3.15.'}, {'type': 'paragraph', 'content': 'Since the vulnerability requires local access to trigger, restricting local user permissions and limiting access to the Deluge client can reduce risk.'}, {'type': 'paragraph', 'content': 'Additionally, monitoring for application crashes related to torrent additions via the URL field can help identify exploitation attempts.'}, {'type': 'paragraph', 'content': 'Ultimately, updating to a version of Deluge that patches this vulnerability (if available) is recommended once a fix is released.'}] [1, 2]