Lucene search
MitreCVE-2007-3956HistoryJul 24, 2007 - 6:30 p.m.
CVE-2007-3956
2007-07-2418:30:00
mitre
web.nvd.nist.gov
32
cve-2007-3956
teamspeak webserver
windows
denial of service
parameter length validation
tcp sessions
nvd
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.9
Confidence
High
EPSS
0.072
Percentile
94.1%
TeamSpeak WebServer 2.0 for Windows does not validate parameter value lengths and does not expire TCP sessions, which allows remote attackers to cause a denial of service (CPU and memory consumption) via long username and password parameters in a request to login.tscmd on TCP port 14534.
Affected configurations
Node
microsoftall_windows
teamspeakweb_serverMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | all_windows | * | cpe:2.3:o:microsoft:all_windows:*:*:*:*:*:*:*:* |
| teamspeak | web_server | 2.0 | cpe:2.3:a:teamspeak:web_server:2.0:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
TeamSpeak 2.0 (Windows Release) - Remote Denial of Service
2007-07-20 00:00:00
prion
prion
Cross site request forgery (csrf)
2007-07-24 18:30:00
nvd
nvd
CVE-2007-3956
2007-07-24 18:30:00
ubuntucve
ubuntucve
CVE-2007-3956
2007-07-24 00:00:00
cvelist
cvelist
CVE-2007-3956
2007-07-24 18:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.9
Confidence
High
EPSS
0.072
Percentile
94.1%
Related for CVE-2007-3956