CVE-2014-7222
TeamSpeak Client 3.0.14 - Buffer Overflow
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
Buffer overflow in TeamSpeak Client 3.0.14 and earlier allows remote authenticated users to cause a denial of service (application crash) by connecting to a channel with a different client instance, and placing crafted data in the Chat/Server tab with two \\ (backslash) characters, a digit, a \ (backslash) character, and "z" in a series of nested img BBCODE tags.
Desbordamiento de búfer en el cliente de TeamSpeak 3.0.14 y anteriores permite que los usuarios autenticados remotos provoquen una denegación de servicio (cierre inesperado de la aplicación) conectándose a un canal con una instancia de cliente diferente y ubicando datos manipulados en la pestaña de Chat/Server con dos caracteres \\ (barra invertida), un dígito, un \ (barra invertida), y "z" en una serie de etiquetas BBCDOE img anidadas.
TeamSpeak Client version 3.0.14 suffers from a buffer overflow vulnerability.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-09-29 CVE Reserved
- 2014-10-02 First Exploit
- 2014-10-06 CVE Published
- 2023-06-01 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (6)
URL | Tag | Source |
---|---|---|
http://r4p3.net/forum/reverse-engineering/38/teamspeak-3-exploit-bb-code-freeze-crash-not-responding/905 | Broken Link | |
http://r4p3.net/public/ts3bbcodefreeze.txt | Broken Link | |
http://www.securityfocus.com/bid/70219 | Third Party Advisory | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/96890 | Third Party Advisory |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/34857 | 2014-10-02 | |
http://packetstormsecurity.com/files/128571/TeamSpeak-Client-3.0.14-Buffer-Overflow.html | 2024-08-06 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Teamspeak Search vendor "Teamspeak" | Teamspeak3 Search vendor "Teamspeak" for product "Teamspeak3" | <= 3.0.14 Search vendor "Teamspeak" for product "Teamspeak3" and version " <= 3.0.14" | client |
Affected
|