Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4529

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2007-4529
Last Modified 15 Nov 2008 01:57:24
Published 24 Aug 2007 08:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2007-4529

Summary

The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonstrated by the (1) AdminAddServer, (2) AdminDeleteServer, (3) AdminStartServer, and (4) AdminStopServer privileges; and administration of arbitrary virtual servers via a request to a .tscmd URI with a modified serverid parameter, as demonstrated by (a) add_server.tscmd, (b) ask_delete_server.tscmd, (c) start_server.tscmd, and (d) stop_server.tscmd.

Vulnerable Systems

Application

  • Teamspeak Web Server 2.0.20.1


References

BUGTRAQ - 20070823 Re: TeamSpeak 2 Server Vulnerabilities?

MISC - http://securityvulns.com/Rdocument6.html

OSVDB - 36047

FULLDISC - 20070511 Teamspeak Server 2.0.20.1 Vulnerabilities

XF - teamspeak-webadmin-privilege-escalation(34254)

BID - 23935

SECUNIA - 25242


Last Updated: 27 May 2016 10:45:53