Multiple vulnerabilities in the H.323 protocol implementation for First Virtual Communications Click to Meet Express (when used with H.323 conferencing endpoints), Click to Meet Premier, Conference Server, and V-Gate allow remote attackers to cause a denial of service, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Click_to_meet_express | First_virtual_communications | h.323 (including) | h.323 (including) |
| Click_to_meet_premier | First_virtual_communications | h.323 (including) | h.323 (including) |
| Conference_server | First_virtual_communications | h.323 (including) | h.323 (including) |
| V-gate | First_virtual_communications | h.323 (including) | h.323 (including) |
References
- http://secunia.com/advisories/11192
- http://support.fvc.com/eng/docs/misc_docs/H.323_Security_Bulletin.pdf
- http://www.cert.org/advisories/CA-2004-01.html
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
- http://secunia.com/advisories/11192
- http://support.fvc.com/eng/docs/misc_docs/H.323_Security_Bulletin.pdf
- http://www.cert.org/advisories/CA-2004-01.html
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm