Sabre Desktop Reservation Software Sabserv Client TCP Port 1001 DoS
Local Access Required,
Remote / Network Access
Denial of Service
Loss of Availability
Sabre Desktop Reservation software contains a flaw that may allow a local or remote denial of service. The issue is triggered when a malformed packet is sent to TCP port 1001, and will result in loss of availability for the Sabre Desktop Reservation software.
The vendor has discontinued this product and therefore has no patch or upgrade that mitigates this problem. It is recommended that an alternate software package be used in its place.
Discovery of this issue is credited to Altomo <email@example.com>.
Sabre Desktop Reservation Software 4.4 G
Sabre Desktop Reservation Software is prone to a denial of service condition. It is possible to trigger this condition by sending malformed data to the Sabserv component, which listens on TCP port 1001. Sabserv is used to facilitate connections by the client software.
This condition may be exploited to deny service to the client software.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org <mailto:email@example.com>.
The vendor has reportedly stated that the vulnerable component (Sabserv) of Sabre Desktop Reservation Software for Windows will be fixed in the next maintenance release.