Title: Google Talk Email Notification Denial Of Service Vulnerability
Severity: MODERATE
Description:
Google Talk is a voice and text messaging application for the Microsoft Windows operating system.
Google Talk is prone to a denial of service vulnerability. This is due to a programming error in which exceptional conditions cause the victim to have to interact and close multiple error popup windows.
A malicious user may repeatedly send email messages containing a blank sender address to a victim running the application. If the email notification feature of the client application is turned on, the Google Talk application will continuously create error popup windows for each malicious message.
Specially crafted email messages may be repeatedly sent by an attacker to deny service to the client application user.
Affected Products:
- Google Talk
References:
- Google: Google Talk Website
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
