Gentoo Security Advisory GLSA 201206-10 (ejabberd)

The remote host is missing updates announced in advisory GLSA 201206-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

FreeBSD Ports: ejabberd

The remote host is missing an update to the system as announced in the referenced advisory. VID 01d3ab7d-9c43-11e0-bc0f-0014a5e3cda6 OpenVAS Vulnerability Test $ Description: Auto generated from VID 01d3ab7d-9c43-11e0-bc0f-0014a5e3cda6 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Fedora Update for ejabberd FEDORA-2011-8415

Check for the Version of ejabberd OpenVAS Vulnerability Test Fedora Update for ejabberd FEDORA-2011-8415 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for ejabberd FEDORA-2011-8415

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for ejabberd FEDORA-2011-8437

Check for the Version of ejabberd OpenVAS Vulnerability Test Fedora Update for ejabberd FEDORA-2011-8437 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for ejabberd FEDORA-2011-8437

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 14 : ejabberd-2.1.8-2.fc14 (2011-8437)

Fixed issue with ejabberdctl failed to connect - Ver. 2.1.8 - Ver. 2.1.8 - Ver. 2.1.8 - Ver. 2.1.8 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

FreeBSD : ejabberd -- remote denial of service vulnerability (01d3ab7d-9c43-11e0-bc0f-0014a5e3cda6)

It's reported in CVE advisory that : expaterl.c in ejabberd before 2.1.7 and 3.x before 3.0.0-alpha-3, and exmpp before 0.9.7, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML docume...

ejabberd XML Parsing Denial of Service Vulnerability (Windows)

This host is installed with ejabberd and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodejabberddosvulnwin.nasl 7029 2017-08-31 11:51:40Z teissa $ ejabberd XML Parsing Denial of Service Vulnerability Windows Authors: Sooraj KS Copyright: Copyright c 2011 SecPod...

CVE-2011-1753

expaterl.c in ejabberd before 2.1.7 and 3.x before 3.0.0-alpha-3, and exmpp before 0.9.7, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of neste...

CVE-2011-1753

expaterl.c in ejabberd before 2.1.7 and 3.x before 3.0.0-alpha-3, and exmpp before 0.9.7, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of neste...

CVE-2011-1753

CVE-2011-1753 affects ejabberd prior to 2.1.7 and 3.x prior to 3.0.0-alpha-3, and exmpp prior to 0.9.7. The issue is improper detection of recursion during XML entity expansion, enabling a remote attacker to induce memory and CPU exhaustion (DoS) through a crafted XML document with a large number...

Debian DSA-2248-1 : ejabberd - denial of service

Wouter Coekaerts discovered that ejabberd, a distributed XMPP/Jabber server written in Erlang, is vulnerable to the so-called 'billion laughs' attack because it does not prevent entity expansion on received data. This allows an attacker to perform denial of service attacks against the service by...

[SECURITY] [DSA 2248-1] ejabberd security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2248-1 [email protected] http://www.debian.org/security/ Nico Golde March 31, 2011 http://www.debian.org/security/faq -...