PT-2004-1241 · Jabberd · Jabberd
Publicado
2004-02-03
·
Atualizado
2017-10-10
·
CVE-2004-0013
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
jabber versions 1.4.2 and 1.4.2a, and possibly earlier versions
Description
The issue is related to improper handling of SSL connections, which allows remote attackers to cause a denial of service, resulting in a crash.
Recommendations
For versions 1.4.2 and 1.4.2a, and possibly earlier versions, consider disabling SSL connections temporarily to prevent the denial of service.
Restrict access to the jabber service to minimize the risk of exploitation until a proper fix is applied.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Jabberd