LANChat Pro Revival UDP Processing Remote Denial Of Service Vulnerability

Bugtraq ID:	12439
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Feb 03 2005 12:00AM
Updated:	Feb 03 2005 12:00AM
Credit:	Discovery of this vulnerability is credited to Donato Ferrante <[email protected]>.
Vulnerable:	LANChat Pro Revival LANChat Pro Revival 1.666c
Not Vulnerable:

LANChat Pro Revival UDP Processing Remote Denial Of Service Vulnerability

LANChat Pro Revival is reported prone to a remote denial of service vulnerability. It is reported that the issue presents itself when the vulnerable client processes a malformed UDP datagram.

A remote attacker may exploit this vulnerability to crash the affected application effectively denying service to legitimate users.

LANChat Pro Revival UDP Processing Remote Denial Of Service Vulnerability

The following exploit is available:

• /data/vulnerabilities/exploits/LANChatPR[1666c]DoS-poc.zip

LANChat Pro Revival UDP Processing Remote Denial Of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

LANChat Pro Revival UDP Processing Remote Denial Of Service Vulnerability

References:

• LANChat Pro Homepage (LANChat Pro)
  
• DoS in LANChat Pro Revival 1.666c ("Donato Ferrante" )