PT-2007-5179 · Ipswitch · Ipswitch Instant Messaging+1

Published

2007-07-24

Updated

2011-03-08

CVE-2007-3959

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Ipswitch Instant Messaging versions 2.0.5.30 and earlier Ipswitch Collaboration Suite (ICS) versions prior to 2.07

Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, by sending certain data to TCP port 5179. This can be achieved through the DoAttachVideoSender, DoAttachAudioSender, DoAttachVideoReceiver, and DoAttachAudioReceiver functions, which can overwrite a destructor.

Recommendations: For Ipswitch Instant Messaging versions 2.0.5.30 and earlier, update to Ipswitch Collaboration Suite (ICS) version 2.07 or later. For Ipswitch Collaboration Suite (ICS) versions prior to 2.07, update to version 2.07 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-3959

Affected Products

Ipswitch Collaboration Suite

Ipswitch Instant Messaging

PT-2007-5179 · Ipswitch · Ipswitch Instant Messaging+1

CVE-2007-3959

Related Identifiers

Affected Products

References · 7