Info

Disclosure

Jul 24, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

TeamSpeak Webserver contains a flaw that may allow a remote denial of service. The issue is triggered when an incoming variable is passed with an arbitrarily high length, and will result in loss of availability for the web server and potentially entire host, as the process can balloon in size consuming all available resources.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Upgrade
Exploit: Exploit Public
OSVDB: Web Related

Solution

Upgrade to version 2.0.23.19 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

TeamSpeak Systems

TeamSpeak

2.0

References

CVE ID: 2007-3956 (see also: NVD)
Bugtraq ID: 24977
Secunia Advisory ID: 26141
ISS X-Force ID: 35518
Related OSVDB ID: 38595
Exploit Database: 4205
Milw0rm: 4205

Credit

Yag Kohha -

Direct URL: http://osvdb.org/38596