Bug 211846 - [Security Advisory] audio/teamspeak3-server: Several vulnerabilities found in Teamspeak3-server
Summary: [Security Advisory] audio/teamspeak3-server: Several vulnerabilities found in...
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Kurt Jaeger
URL: http://seclists.org/fulldisclosure/20...
Keywords: security
Depends on:
Blocks:
 
Reported: 2016-08-14 21:14 UTC by Ultima
Modified: 2016-08-14 22:20 UTC (History)
1 user (show)

See Also:

Attachments
teamspeak vuxml entry (1.53 KB, patch)
2016-08-14 22:14 UTC, Kurt Jaeger 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ultima 2016-08-14 21:14:43 UTC 
10 vulnerabilities have been found in teamspeak3-server. Some of these vulnerabilities are sever allowing a malicious attacker to take over any Teamspeak server, but getting a shell on the affected machine.

This bug is to alert teamspeak users of these vulnerabilities.
Comment 1 Ultima 2016-08-14 21:19:22 UTC 
I can't upload the file due to it being too big, this link is the vuln.xml file.

https://gist.github.com/anonymous/bdb896b4714e95ffe8cce9cd72be581a
Comment 2 Kurt Jaeger freebsd_committer freebsd_triage 2016-08-14 22:14:58 UTC 
Created attachment 173680 [details]
teamspeak vuxml entry

make validate is happy.
Comment 3 commit-hook freebsd_committer freebsd_triage 2016-08-14 22:19:37 UTC 
A commit references this bug:

Author: pi
Date: Sun Aug 14 22:19:31 UTC 2016
New revision: 420201
URL: https://svnweb.freebsd.org/changeset/ports/420201

Log:
  audio/teamspeak3-server: Document remote code execution

  PR:		211846
  Security:	http://seclists.org/fulldisclosure/2016/Aug/61
  Submitted by:	Ultima1252@gmail.com

Changes:
  head/security/vuxml/vuln.xml