The automatic update feature in Google Talk allows remote attackers to cause a denial of service (CPU and memory consumption) by poisoning a target's DNS cache and causing a large update file to be sent, which consumes large amounts of CPU and memory during the signature verification, aka BenjiBug.
Max CVSS
5.4
EPSS Score
0.34%
Published
2005-11-29
Updated
2017-07-20
Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a denial of service (connection reset) via email with a blank sender.
Max CVSS
5.0
EPSS Score
0.67%
Published
2005-11-18
Updated
2017-07-11
2 vulnerabilities found