Ventrilo <= 2.3.0 - Remote Denial of Service Exploit (all platforms)

No description provided by source. / by Luigi Auriemma Windows compiled version: http://aluigi.altervista.org/poc/ventboom.zip /str0ke / include stdio.h include stdlib.h include string.h / Ventrilo UDP status algorithm 0.1 by Luigi Auriemma e-mail: [email protected] web:...

Ventrilo <= 3.0.2 NULL pointer Remote DoS Exploit

No description provided by source. NULL pointer in Ventrilo 3.0.2 http://exploit-db.com/sploits/2008-ventrilobotomy.zip milw0rm.com 2008-08-13...

ventrilo-info NSE Script

Detects the Ventrilo voice communication server service versions 2.1.2 and above and tries to determine version and configuration information. Some of the older versions pre 3.0.0 may not have the UDP service that this probe relies on enabled by default. The Ventrilo server listens on a TCP...

Ventrilo v3.0.5 v3.0.4 - Stack Buffer Overflow Vulnerability

Document Title: =============== Ventrilo v3.0.5 v3.0.4 - Stack Buffer Overflow Vulnerability Release Date: ============= 2011-07-22 Vulnerability Laboratory ID VL-ID: ==================================== 98 Product & Service Introduction: =============================== Ventrilo 3.0.0 is the next...

Ventrilo v3.0.5 v3.0.4 - Stack Buffer Overflow Vulnerability

Document Title: =============== Ventrilo v3.0.5 v3.0.4 - Stack Buffer Overflow Vulnerability Release Date: ============= 2011-07-22 Vulnerability Laboratory ID VL-ID: ==================================== 98 Product & Service Introduction: =============================== Ventrilo 3.0.0 is the next...

Gentoo Security Advisory GLSA 200904-13 (ventrilo-server-bin)

The remote host is missing updates announced in advisory GLSA 200904-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200904-13 (ventrilo-server-bin)

The remote host is missing updates announced in advisory GLSA 200904-13. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

GLSA-200904-13 : Ventrilo: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200904-13 Ventrilo: Denial of Service Luigi Auriemma reported a NULL pointer dereference in Ventrilo when processing packets with an invalid version number followed by another packet. Impact : A remote attacker could send speciall...

Ventrilo: Denial of service

Background Ventrilo is a Voice over IP group communication server. Description Luigi Auriemma reported a NULL pointer dereference in Ventrilo when processing packets with an invalid version number followed by another packet. Impact A remote attacker could send specially crafted packets to the...

Ventrilo Server Detection

A VoIP service is listening on the remote host. Description : The remote host is running Ventrilo, a voice over IP VoIP software developed by Flagship Industries. SPDX-FileCopyrightText: 2008 Tenable Network Security Some text descriptions might be excerpted from a referenced sources, and are...

Ventrilo Server Detection

A VoIP service is listening on the remote host. Description : The remote host is running Ventrilo, a voice over IP VoIP software developed by Flagship Industries. OpenVAS Vulnerability Test $Id: ventrilodetect.nasl 5499 2017-03-06 13:06:09Z teissa $ Description: Ventrilo Server Detection Authors:...

Ventrilo &lt;= 3.0.2 NULL pointer Remote DoS Exploit

No description provided by source. NULL pointer in Ventrilo 3.0.2 http://sebug.net/paper/poc/2008-ventrilobotomy.zip http://exploit-db.com/sploits/2008-ventrilobotomy.zip...

Ventrilo voice chat server DoS

NULL pointer dereference...

NULL pointer in Ventrilo 3.0.2

Luigi Auriemma Application: Ventrilo http://www.ventrilo.com Versions: = 3.0.2 Platforms: Windows, Linux i386, Solaris SPARC, Solaris x86, FreeBSD i386, NetBSD i386, Mac OSX PowerPC Bug: NULL pointer Exploitation: remote, versus server Date: 13 Aug 2008 Authors: Andre Malm Luigi Auriemma web:...

CVE-2008-3680

The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and server crash by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784...

Null pointer dereference

The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and server crash by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784...

CVE-2008-3680

The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and server crash by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784...

CVE-2008-3680

The CVE-2008-3680 issue affects Flagship Industries’ Ventrilo server (versions 3.0.2 and earlier). The vulnerability is a NULL pointer dereference triggered when the server processes a type 0 packet with an invalid version, followed by another packet, over TCP port 3784, which can cause a remote ...

EUVD-2008-3666

The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and server crash by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784...

Ventrilo 'type 0' NULL指针引用拒绝服务漏洞

BUGTRAQ ID: 30675 CNCAN ID：CNCAN-2008081405 Ventrilo是一款游戏者经常使用的语音聊天软件。 Ventrilo处理'type 0'报文存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 攻击者发送包含非法版本和发送包含任意内容的报文，服务器会由于指派给客户端报文解密用的KEY仍旧未初始化而崩溃解密函数中触发NULL指针异常。 Flagship Industries Ventrilo 3.0.2 目前没有解决方案提供： http://www.ventrilo.com 可参考如下测试程序：...