Vulnerabilities > CVE-2007-3956 - Remote Denial Of Service vulnerability in Teamspeak web Server 2.0

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

microsoft

teamspeak

exploit available

NVD

Published: 2007-07-24

Updated: 2017-09-29

Summary

TeamSpeak WebServer 2.0 for Windows does not validate parameter value lengths and does not expire TCP sessions, which allows remote attackers to cause a denial of service (CPU and memory consumption) via long username and password parameters in a request to login.tscmd on TCP port 14534.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft ALL Windows *	1
Application	Teamspeak Teamspeak WEB Server 2.0	1

Exploit-Db

description	TeamSpeak 2.0 (Windows Release) Remote Denial of Service Exploit. CVE-2007-3956. Dos exploit for windows platform
file	exploits/windows/dos/4205.pl
id	EDB-ID:4205
last seen	2016-01-31
modified	2007-07-20
platform	windows
port
published	2007-07-20
reporter	YAG KOHHA
source	https://www.exploit-db.com/download/4205/
title	TeamSpeak 2.0 Windows Release Remote Denial of Service Exploit
type	dos

Summary

Vulnerable Configurations

Exploit-Db

References