BitTorrent DNA Vulnerable to Remote Hijack

Written by Ernesto on January 03, 2008 

A recent reports suggests that the BitTorrent DNA, which is bundled with the mainline client, is an “exploitable” version of uTorrent without the user interface. It is suggested that it is possible for any websites to offload content to the btdna.exe, without the user’s consent.

bittorrent dnaBitTorrent DNA is used for p2p streaming of online videos. It works like this; the user who wants to watch a stream has to install the BitTorrent DNA application, which is also bundled with the BitTorrent mainline client. When the user plays a BitTorrent accelerated stream it will not only download data, but also upload it to other people who are watching the same stream, similar to a regular BitTorrent download.

It turns out that the DNA application is almost identical to uTorrent. “All of the resources are there, dialogs, icons, etc. It is a full blown µTorrent client that just doesn’t display it’s User Interface” writes Wefixedtheglitch, who reverse engineered the application.

The algorithm has changed a bit of course. Pieces are no longer picked at random because this doesn’t work for streaming, so it has to start with getting the first bits, first. Another difference between uTorrent and DNA is that the latter has a built in webserver. This server is used to stream media from localhost or 127.0.0.1, but also introduces some vulnerabilities.

Wefixedtheglitch reports: “It is not impossible for ANY website to hijack and offload content onto your “btdna.exe” process. I consider this risk as “HIGH” and do not recommend users to have the “btdna.exe” software installed on their systems due to these risks, especially if your ISP limits/charges you for bandwidth overages.” This claim was backed up by an additional researcher upon TorrentFreak’s request.

This report contradicts an earlier statement from BitTorrent Inc. CEO Ashwin Navin, who told TorrentFreak: “BitTorrent DNA only accelerates content that a user clicks on. It does not anticipate user wants, or pre-load a user’s PC with content they did not explicitly ask for (via an HTTP request from a webpage).”

One thing is for sure, BitTorrent DNA isn’t perfect yet. Several users reported that it slows down their web-browsers, with Linksys router owners being particularly affected. We have contacted the BitTorrent team about this slowdown issue before and they told us that they are working on a fix. I have no doubt that they will also address the security issues if there are any, but for now I think it is better to uninstall the application when you don’t need it.

DNA automatically starts with Windows, and has to be uninstalled separately from the mainline client. It is pretty well hidden and many users probably don’t even know that btdna.exe is running, as its only noticeable when the Windows task manager is opened.

Update: We received a response from BitTorrent Inc.

The blog post suggesting BitTorrent DNA is an “exploitable” version of uTorrent is erroneous. The blogger you cite should have been more diligent in his/her research, but one can hardly expect reliable information from an anonymous blog. While it is possible for any application to send requests through btdna.exe as a simple proxy, the DNA client will only accelerate authorized URLs that are registered by BitTorrent Inc. in the DNA service center. When an authorized URL is passed to the proxy, the DNA client connects to a managed infrastructure that includes a high performance tracker that introduces the client to DNA peers who have also requested the same file. The DNA service center also includes a real-time
dashboard that provides our customers visibility and control over their accelerated content, as well as better management over their entire content delivery infrastructure.

As far as the user is concerned, BitTorrent DNA only receives data that a user requests. Like any BitTorrent transfer, it is ‘private’ in that it never uploads anything you yourself haven’t requested from a webpage. It does not anticipate user wants, or pre-load a user’s PC with content not explicitly requested via an HTTP request from a webpage. Our terms for DNA
require websites to disclose to users why and how DNA improves the experience for video, software, and games with P2P acceleration.

Furthermore, BitTorrent DNA when fully released in BitTorrent mainline will allow users to see and fully control DNA activity through the mainline interface. Currently DNA is being deployed as a stand alone application, but DNA functionality will be added to mainline seamlessly in the future. We have standardized our development for PC clients on the uTorrent codebase. Mainline 6.0 was the first to leverage this codebase, and our DNA client also leverages the uTorrent codebase but includes many new enhancements beyond uTorrent for things like video streaming for example.

Not all P2P video streaming is created equal, and we strive to offer progressively downloaded video maintaining as much of the efficiency “rarest-first” offered in traditional BitTorrent. Making video streaming with BitTorrent work reliably and efficiently is non-trivial engineering, and we’ve spent quite a bit of time getting it to be the best implementation available.

The best place to visualize DNA video in action is here:

Or for full length movies and TV shows here:

Previously: Conspiracy Against Shareaza and Open Letter to the Recording Industry

Next: US Pirate Party Endorses Barack Obama

144 Responses

Pages: « 1 2 [3] 4 5 6 » Show All

51 Mar 27, 2008 at 14:18 by Vince

Hi, everybodyt

52 Mar 27, 2008 at 15:31 by Siber

These prayers help me to keep God in my life, especially with the many distractions I encounter.a

53 Mar 28, 2008 at 07:46 by Kathy

I like this website. This website helped me with prayer learning. Good job. Thank you. Please provide more French prayers. Bye-bye./

54 Mar 30, 2008 at 21:41 by judy

huyak

55 Mar 31, 2008 at 05:48 by Orpheous

After recently installing BitTorrent, in the search for a torrent downloading program which gives me a little more control and flexibility than the previous program, BitComet, I noticed that my firewall was reporting constant internet traffic even when I wasn’t downloading or accessing the internet.
I looked into my firewall and found the BitTorrent process btdna.exe was accessing and downloading from up to 30 ip addresses!
btdna.exe starts at windows startup and runs even when you haven’t initialised BitTorrent, and chews up your network traffic and internet access.
I killed the process, and did the following to stop it from starting again:
click start - run, type msconfig, click startup ini, uncheck btdna.exe

I will be removing BitTorrent and continuing my search for another torrent program.

As far as I’m concerned, it i totally unacceptable for a program to install such an invasive process without allowing users to opt out of it.

BitTorrent, you’ve lost me! And I will be advising against the use of this program to all I correspond with.

56 Apr 01, 2008 at 20:06 by Willem

I have always wanted a compendium of novena prayers. Thank you for sharing all these prayers with us. It brings joy and happiness to everyone. I know, I do feel that way.

57 Apr 01, 2008 at 21:58 by Rosina

keep up the good work!

58 Apr 02, 2008 at 08:42 by Willem

Pretty nice site, wants to see much more on it! :)n

59 Apr 02, 2008 at 10:27 by Melissa

This is very interesting site…s

60 Apr 02, 2008 at 15:03 by jeroen

These prayers help me to keep God in my life, especially with the many distractions I encounter.e

61 Apr 03, 2008 at 13:18 by Albert

Hi, all. Nice site…I really like your site ! Good job man.r

62 Apr 03, 2008 at 22:42 by Siber

Nice site… Cool guestbook…

63 Apr 04, 2008 at 04:18 by Kathy

Hello+stupid+pendosegi.v

64 Apr 04, 2008 at 05:10 by Ron

Hi, good morning to all of you… Nice Guestbook ;-) !!!m

65 Apr 04, 2008 at 06:07 by Siber

Lucky to find you, keep on the good workk guys! Best of luck.e

66 Apr 04, 2008 at 13:58 by Hannes

huyak

67 Apr 07, 2008 at 02:17 by Rosina

I have your site for its useful and funny content and simple design.o

68 Apr 07, 2008 at 07:49 by Rosina

This site is really superb!!! Thank you for you work! Good Luck

69 Apr 07, 2008 at 16:26 by jeroen

Hello admin, nice site ! Good content, eautiful design, thank !m

70 Apr 09, 2008 at 09:31 by Timmy

Hi! Definitely nice and neat site you got there.

71 Apr 09, 2008 at 12:02 by Martin

Cool guestbook, interesting information… Keep it UP. excellent site i really like your stuff.

72 Apr 09, 2008 at 19:06 by Martin

Looking for information and found it at this great site…e

73 Apr 12, 2008 at 13:34 by Siber

I\’l be back… :)

74 Apr 13, 2008 at 07:48 by jeroen

I\’l be back… :)a

75 Apr 13, 2008 at 09:59 by Hannes

Thanks for your project. I like this site. KEEP IT UP..

Pages: « 1 2 [3] 4 5 6 » Show All

Responses are closed

All remaining responses will continue to be archived. Use the TorrentFreak forums if you want to discuss something.