CVE-2008-3680

Name of the Vulnerable Software and Affected Versions Flagship Industries Ventrilo versions 3.0.2 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in a server crash, by sending a specific type of packet to the TCP port 3784. This is achieved by sending a type 0 packet with an invalid version, followed by another packet.

Recommendations For versions 3.0.2 and earlier, consider restricting access to TCP port 3784 until a fix is available. As a temporary workaround, disabling the decryption function may help mitigate the risk of exploitation.