CVE-2006-2221

Name of the Vulnerable Software and Affected Versions Process-one ejabberd versions 1.1.1 1 and earlier

Description The issue allows local users to cause a denial of service via a symlink attack on the bitrock installer.log temporary file, potentially affecting products that use a third-party installer generation tool, possibly BitRock InstallBuilder.

Recommendations For versions 1.1.1 1 and earlier, consider restricting access to the temporary file bitrock installer.log to minimize the risk of exploitation. As a temporary workaround, avoid using the installer generation tool until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.