CVE-2008-1337

Name of the Vulnerable Software and Affected Versions Timbuktu Pro versions 8.6.5 RC 229 and earlier

Description The issue affects the instant message service, allowing remote attackers to cause a denial of service. This can happen in two ways: (1) by sending an invalid Version field, which can cause the daemon to crash, or (2) by sending an invalid or partial message, leading to CPU consumption and eventual daemon termination.

Recommendations For Timbuktu Pro versions 8.6.5 RC 229 and earlier, consider disabling the instant message service until a fix is available to prevent potential denial of service attacks.