llcon Protocol Message Remote Denial of Service Vulnerability

Bugtraq ID:	30770
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2008-3766
Remote:	Yes
Local:	No
Published:	Aug 20 2008 12:00AM
Updated:	May 07 2015 05:24PM
Credit:	Reported by the vendor
Vulnerable:	llcon llcon 2.1.1
Not Vulnerable:	llcon llcon 2.1.2

llcon Protocol Message Remote Denial of Service Vulnerability

The 'llcon' program is prone to a remote denial-of-service vulnerability because it fails to handle private messages properly.

An attacker could exploit this issue to crash the affected application, denying service to legitimate users.

This issue affects llcon 2.1.1; prior versions may also be affected.

llcon Protocol Message Remote Denial of Service Vulnerability

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

llcon Protocol Message Remote Denial of Service Vulnerability

Solution:
The vendor has released a fix; please see the references for more information.


llcon llcon 2.1.1

• llcon llcon-2.1.2.tar.gz
  http://downloads.sourceforge.net/llcon/llcon-2.1.2.tar.gz?modtime=1218 787016&big_mirror=0

llcon Protocol Message Remote Denial of Service Vulnerability

References:

• llcon Homepage (llcon)
  
• llcon Release Notes 2.1.2 (llcon)