Forum


Notice to all users

We are migrating towards a new forum system located at community.teamspeak.com, as such this forum will become read-only on January 29, 2020

Results 1 to 2 of 2

Hybrid View

  1. #1
    Join Date
    February 2012
    Location
    Germany
    Posts
    577

    Teamspeak Server / libssh Authentication bypass in server code CVE-2018-10933

    As far as I see, the Linux Teamspeak server uses a statically linked libssh 0.7 for providing the new ssh serverquery access.
    According to https://www.heise.de/security/meldun...n-4193260.html there is a serious security bug in libssh 0.6 and above that requires immediate fix. Unpatched servers are allowing serverquery access without providing credentials.

    See also:
    https://www.libssh.org/security/advi...2018-10933.txt

    Is a vulnerable libssh 0.6 or above used in Teamspeak server 3.4.0?
    If yes, when is an update available?

  2. #2
    Join Date
    September 2012
    Posts
    6,079
    The server is not vulnerable to this bug as we don't use it in a way that is susceptible to the bug.
    When sending PMs please make sure to include a reference link to the thread in question in the body of your message.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 5
    Last Post: January 15th, 2020, 01:46 PM
  2. [On Todo] Teamspeak 3.1.8 Android, copyright not modified in 2018
    By Dony1131 in forum Android
    Replies: 2
    Last Post: February 2nd, 2018, 08:05 PM
  3. [Not possible] TS3 server bypass firewall rules ?
    By doo2doo2 in forum Server Support
    Replies: 10
    Last Post: February 25th, 2016, 05:03 PM
  4. Server Group Above/Bypass Other Groups
    By Plushcat in forum Permission System
    Replies: 2
    Last Post: November 29th, 2013, 06:19 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •