Vulnerability Details CVE-2005-2719
Ventrilo 2.1.2 through 2.3.0 allows remote attackers to cause a denial of service (application crash) via a status packet that contains less data than specified in the packet header sent to UDP port 3784.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.11
EPSS Ranking 93.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036407.html
- http://marc.info/?l=bugtraq&m=112483407515020&w=2
- http://secunia.com/advisories/16551/
- http://securitytracker.com/id?1014784
- http://www.securityfocus.com/bid/14644
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21996
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036407.html
- http://marc.info/?l=bugtraq&m=112483407515020&w=2
- http://secunia.com/advisories/16551/
- http://securitytracker.com/id?1014784
- http://www.securityfocus.com/bid/14644
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21996
Products affected by CVE-2005-2719
-
cpe:2.3:a:flagship_industries:ventrilo:2.1.2
-
cpe:2.3:a:flagship_industries:ventrilo:2.1.3
-
cpe:2.3:a:flagship_industries:ventrilo:2.1.4
-
cpe:2.3:a:flagship_industries:ventrilo:2.2
-
cpe:2.3:a:flagship_industries:ventrilo:2.3