ChatterBox Remote Denial of Service Vulnerability
BID:9532
Info
ChatterBox Remote Denial of Service Vulnerability
| Bugtraq ID: | 9532 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 30 2004 12:00AM |
| Updated: | Jan 30 2004 12:00AM |
| Credit: | Discovery of this issue is credited to "Donato Ferrante" <[email protected]>. |
| Vulnerable: |
ChatterBox ChatterBox 2.0 ChatterBox ChatterBox 1.0.1 ChatterBox ChatterBox 1.0 |
| Not Vulnerable: | |
Discussion
ChatterBox Remote Denial of Service Vulnerability
ChatterBox has been reported to be prone to a remote denial of service vulnerability. Upon successful exploitation, malicious users can cause the chat server to crash, denying service to legitimate users.
ChatterBox has been reported to be prone to a remote denial of service vulnerability. Upon successful exploitation, malicious users can cause the chat server to crash, denying service to legitimate users.
Exploit / POC
ChatterBox Remote Denial of Service Vulnerability
There is no exploit required to leverage this vulnerability.
It has been reported that sending the string "aaaaaa" to the vulnerable software will cause a crash.
There is no exploit required to leverage this vulnerability.
It has been reported that sending the string "aaaaaa" to the vulnerable software will cause a crash.
Solution / Fix
ChatterBox Remote Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
ChatterBox Remote Denial of Service Vulnerability
References:
References:
- Vendor Home Page (ChatterBox)
- Denial Of Service in ChatterBox 2.0 ("Donato Ferrante"
)