Denial of Service Vulnerability in Baidu Hi IM by Baidu
CVE-2008-7013

Currently unrated

Key Information:

Vendor: Baidu
Status: Baidu Hi Im
Vendor: CVE Published:; 19 August 2009

What is CVE-2008-7013?

The Baidu Hi IM client software is vulnerable due to a flaw in the NetService.dll component that allows remote servers to exploit a crafted login response. This can trigger a divide-by-zero error, leading to a denial of service where the client crashes unexpectedly. Users and organizations utilizing this software should apply appropriate mitigations to safeguard against potential exploits.

References

http://www.securityfocus.com/archive/1/496353/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://osvdb.org/51697

vdb-entryx_refsource_OSVDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2009
Vulnerability Reserved
Aug 18, 2009