Remote Crash Vulnerability in TeamSpeak Client by TeamSpeak Systems
CVE-2019-15502

7.5HIGH

Key Information:

Vendor

Teamspeak

Status
Teamspeak
Vendor
CVE Published:
29 August 2019

What is CVE-2019-15502?

The TeamSpeak client prior to version 3.3.2 is susceptible to a vulnerability that allows remote servers to cause a crash. This can occur when specific byte sequences, such as the Unicode characters U+2068 (FIRST STRONG ISOLATE) and U+2067 (RIGHT-TO-LEFT ISOLATE), are sent to the client. This issue poses a risk for users, as it can lead to unexpected interruptions during usage. It is advisable for users to upgrade to newer versions to ensure their security and functionality.

References

https://www.youtube.com/watch?v=PlVbPIs75D4
x_refsource_MISC
https://r4p3.net/threads/teamkilled-new-teamspeak-crash.8...
x_refsource_MISC
https://forum.teamspeak.com/threads/141134-Release-TeamSp...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.