HAVP 'sockethandler.cpp' Client Connect Infinite Loop Denial of Service Vulnerability

Bugtraq ID:	30697
Class:	Design Error
CVE:	CVE-2008-3688
Remote:	Yes
Local:	No
Published:	Aug 14 2008 12:00AM
Updated:	Sep 22 2008 03:49PM
Credit:	Peter Warasin
Vulnerable:	Gentoo Linux Christian Hilgers HAVP 0.88
Not Vulnerable:	Christian Hilgers HAVP 0.89

HAVP 'sockethandler.cpp' Client Connect Infinite Loop Denial of Service Vulnerability

HAVP is prone to a remote denial-of-service vulnerability because unresponsive servers can trigger an infinite loop.

Attackers may flood the HAVP server with requests, exhausting available resources. Legitimate clients won't be able to access the server.

HAVP 0.88 is vulnerable; earlier versions may also be affected.

HAVP 'sockethandler.cpp' Client Connect Infinite Loop Denial of Service Vulnerability

An attacker may exploit this issue with a browser.

HAVP 'sockethandler.cpp' Client Connect Infinite Loop Denial of Service Vulnerability

Solution:
The vendor has released an updated version. Please see the references for more information.


Christian Hilgers HAVP 0.88

• Christian Hilgers HAVP 0.89
  http://www.server-side.de/download/havp-0.89.tar.gz

HAVP 'sockethandler.cpp' Client Connect Infinite Loop Denial of Service Vulnerability

References:

• HAVP Homepage (Christian Hilgers)
  
• Infinite loop which causes havp to block completely (Peter Warasin)