Flagship Industries: Security Vulnerabilities
The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784.
CVSS Score
5.0
EPSS Score
0.091
Published
2008-08-14
Ventrilo 2.1.2 through 2.3.0 allows remote attackers to cause a denial of service (application crash) via a status packet that contains less data than specified in the packet header sent to UDP port 3784.
CVSS Score
5.0
EPSS Score
0.11
Published
2005-08-30