187117 – media-sound/teamspeak-client-bin 2.0 Denial of Service (CVE-2007-3956)

Bug 187117 - media-sound/teamspeak-client-bin 2.0 Denial of Service (CVE-2007-3956)

Summary: media-sound/teamspeak-client-bin 2.0 Denial of Service (CVE-2007-3956)

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://milw0rm.com/exploits/4205
Whiteboard:	B3 [ebuild] aetius
Keywords:

Depends on:
Blocks:

Reported:	2007-07-30 10:52 UTC by Matt Drew (RETIRED)
Modified:	2007-08-03 22:01 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Matt Drew (RETIRED) gentoo-dev

2007-07-30 10:52:16 UTC

An unauthenticated Denial of Service on the Teamspeak client.

http://milw0rm.com/exploits/4205

Note that the server package is due to be masked in bug #178517 - sound, can you confirm that our version of this is vulnerable and provide an updated ebuild?  Otherwise we'll have to mask.

Comment 1 Matt Drew (RETIRED) gentoo-dev

2007-07-30 10:54:16 UTC

setting status.

Comment 2 Martin Jackson (RETIRED) gentoo-dev

2007-08-03 22:01:32 UTC

This depicts an attach on the *server*, which listens on port 14534.  The client in the portage tree is up-to-date.  I have taken ownership of both packages.

If you disagree, please re-open and I'll be happy to work with you on it.