6 matches found
Mageia: Security Advisory (MGASA-2014-0057)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated ejabberd package fixes security vulnerabilities
The TLS driver in ejabberd before 2.1.12 supports 1 SSLv2 and 2 weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack CVE-2013-6169...
Mandriva Linux Security Advisory : ejabberd (MDVSA-2014:005)
A vulnerability has been discovered and corrected in ejabberd : The TLS driver in ejabberd before 2.1.12 supports 1 SSLv2 and 2 weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack CVE-2013-6169. The updated packages have been...
CVE-2013-6169
CVE-2013-6169 affects ejabberd: the TLS driver in ejabberd before 2.1.12 accepts SSLv2 and weak ciphers, enabling remote attackers to obtain sensitive information via brute-force. Affected product: ejabberd (pre-2.1.12). Impact: potential exposure of sensitive data; integrity and confidentiality ...
CVE-2013-6169
The TLS driver in ejabberd before 2.1.12 supports 1 SSLv2 and 2 weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack...
Debian Security Advisory DSA 2775-1 (ejabberd - insecure SSL usage)
It was discovered that ejabberd, a Jabber/XMPP server, uses SSLv2 and weak ciphers for communication, which are considered insecure. The software offers no runtime configuration options to disable these. This update disables the use of SSLv2 and weak ciphers. The updated package for Debian 7 whee...