VooDoo Circle BotNet Connection Denial of Service Vulnerability
BID:13394
Info
VooDoo Circle BotNet Connection Denial of Service Vulnerability
| Bugtraq ID: | 13394 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 26 2005 12:00AM |
| Updated: | Apr 26 2005 12:00AM |
| Credit: | This vulnerability was announced by the vendor. |
| Vulnerable: |
VooDoo cIRCle 1.0.32 VooDoo cIRCle 1.0.20 |
| Not Vulnerable: |
VooDoo cIRCle 1.0.33 |
Discussion
VooDoo Circle BotNet Connection Denial of Service Vulnerability
VooDoo cIRCle is affected by a denial of service vulnerability due to improper handling of BOTNET packets. A remote attacker with valid access can send a malicious packet through the BOTNET connection. The application fails to handle the malformed packet correctly and crashes.
This vulnerability is reported to affect VooDoo cIRCle versions 1.0.20 through 1.0.32; an upgrade is available.
VooDoo cIRCle is affected by a denial of service vulnerability due to improper handling of BOTNET packets. A remote attacker with valid access can send a malicious packet through the BOTNET connection. The application fails to handle the malformed packet correctly and crashes.
This vulnerability is reported to affect VooDoo cIRCle versions 1.0.20 through 1.0.32; an upgrade is available.
Exploit / POC
VooDoo Circle BotNet Connection Denial of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
VooDoo Circle BotNet Connection Denial of Service Vulnerability
Solution:
The vendor has addressed this issue in VooDoo cIRCle version 1.0.33.
VooDoo cIRCle 1.0.20
VooDoo cIRCle 1.0.32
Solution:
The vendor has addressed this issue in VooDoo cIRCle version 1.0.33.
VooDoo cIRCle 1.0.20
-
VooDoo VooDoo cIRCle 1.0.33
http://prdownloads.sourceforge.net/voodoo-circle/voodoo_circle-doc-1.0 .33.zip?download
VooDoo cIRCle 1.0.32
-
VooDoo VooDoo cIRCle 1.0.33
http://prdownloads.sourceforge.net/voodoo-circle/voodoo_circle-doc-1.0 .33.zip?download
References
VooDoo Circle BotNet Connection Denial of Service Vulnerability
References:
References:
- VooDoo cIRCle 1.0.33 Change Log (VooDoo)
- VooDoo cIRCle Home Page (VooDoo)