CVE-2012-4670

Name of the Vulnerable Software and Affected Versions Tigase XMPP Server versions prior to 5.1.0

Description The issue allows remote XMPP servers to spoof domains via a Verify Response or Authorization Response, due to the lack of verification that a request was made for an XMPP Server Dialback response.

Recommendations For versions prior to 5.1.0, update to version 5.1.0 or later to resolve the issue.