CVE-2008-3680

Published Aug 14, 2008

Last updated 6 years ago

CVSS info 5.0

Overview

Description: The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD7B8FAB-4CC7-46D1-AEED-6981A1DF7282"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:1.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CF15DB2-0064-4341-BFD5-FBFDCA50671C"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:1.03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E09F3E6-3E2C-41FA-8182-323731B8358E"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:1.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CCAE281-2997-47DA-8363-B605B436A0B0"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:1.05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B687251C-A052-45E7-B360-89428078DE28"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:1.06:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "822097D0-92A7-4FCA-B5CF-D0E4174DA953"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98AC732A-41D2-4357-8741-9F6AD56269F3"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D65B6E36-91D0-47D2-8ABA-52D5ED6B960C"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "599708E5-B452-41E9-959F-FB79D5E96A25"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD449C35-6329-4B4B-82A1-A2DEBDEBB069"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "661639F3-8875-41DB-8BCF-9569681632E3"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44347E50-1B1E-43FA-8B72-3C942C9BBE39"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51BE24F8-B859-41CA-9EF3-2358A33F6491"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B73A1EF7-0462-4EDB-9D78-6BDA5D978F9E"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.3.2:prototype.6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02208E19-32E6-45A5-8233-0B1D238289D5"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:2.3.2:prototype.9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA004CF1-4765-4E6A-8426-30DC7604FC7B"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0A33D6B-D458-49E2-A5BC-619103A01755"
          },
          {
            "criteria": "cpe:2.3:a:flagship_industries:ventrilo:3.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EB3ED83-34D8-4A1E-A89D-F19FBA28D74A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References