[] NeoSense
E X P L O I T S
title author type platform port cve id

Vavoom 1.24 - str.cpp VStr::Resize Function Crafted UDP Packet Remote Denial of Service

Author: Luigi Auriemma
type: dos
platform: multiple
port: 
date_added: 2007-08-24 
date_updated: 2013-12-27 
verified: 1 
codes: CVE-2007-4535;OSVDB-40183 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/25436/info

Vavoom is prone to multiple remote vulnerabilities, including a buffer-overflow issue, a format-string issue, and a denial-of-service issue.

An attacker can exploit these issues to execute arbitrary code within the context of the affected application or crash the application, denying service to legitimate users.

Vavoom 1.24 is vulnerable; prior versions may also be affected.

For the denial-of-service vulnerability, the attacker sends a packet to UDP port 26000 containing the following hexadecimal bytes: 80 02 ff 00
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.