Vulnerabilities > CVE-2005-3694 - Remote Denial of Service vulnerability in Centericq 4.20.0R3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
centericq 4.20.0-r3 with "Enable peer-to-peer communications" set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packets of length 1 or 2, as demonstrated using Nessus.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | CenterICQ 4.20/4.5 Malformed Packet Handling Remote Denial of Service Vulnerability. CVE-2005-3694. Dos exploit for linux platform |
| id | EDB-ID:26666 |
| last seen | 2016-02-03 |
| modified | 2005-11-29 |
| published | 2005-11-29 |
| reporter | Wernfried Haas |
| source | https://www.exploit-db.com/download/26666/ |
| title | CenterICQ 4.20/4.5 Malformed Packet Handling Remote Denial of Service Vulnerability |
Nessus
NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-200512-11.NASL description The remote host is affected by the vulnerability described in GLSA-200512-11 (CenterICQ: Multiple vulnerabilities) Gentoo developer Wernfried Haas discovered that when the last seen 2020-06-01 modified 2020-06-02 plugin id 20352 published 2005-12-30 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/20352 title GLSA-200512-11 : CenterICQ: Multiple vulnerabilities NASL family Debian Local Security Checks NASL id DEBIAN_DSA-912.NASL description Wernfried Haas discovered that centericq, a text-mode multi-protocol instant messenger client, can crash when it receives certain zero length packets and is directly connected to the Internet. last seen 2020-06-01 modified 2020-06-02 plugin id 22778 published 2006-10-14 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/22778 title Debian DSA-912-1 : centericq - denial of service
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334089
- http://secunia.com/advisories/17798
- http://secunia.com/advisories/17818
- http://secunia.com/advisories/18081
- http://security.gentoo.org/glsa/glsa-200512-11.xml
- http://www.debian.org/security/2005/dsa-912
- http://www.osvdb.org/21270
- http://www.securityfocus.com/bid/15649
- https://bugs.gentoo.org/show_bug.cgi?id=100519
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23327