10 matches found
Fedora Update for prosody FEDORA-2014-5586
Check for the Version of prosody OpenVAS Vulnerability Test Fedora Update for prosody FEDORA-2014-5586 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for prosody FEDORA-2014-5586
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 2895-2] prosody regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-2895-2 [email protected] http://www.debian.org/security/ Luciano Bello April 21, 2014 http://www.debian.org/security/faq -...
CVE-2014-2744
plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...
CVE-2014-2744
plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...
CVE-2014-2744
plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...
CVE-2014-2744
plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...
CVE-2014-2744
CVE-2014-2744 affects Prosody (Lua XMPP server) before 0.9.4 and Lightwitch Metronome through 3.4. The vulnerability arises when stream compression is negotiated during an unauthenticated session, allowing a remote attacker to cause a denial of service via highly compressed XML elements in an XMP...
Prosody XML解压缩拒绝服务漏洞
CVE ID:CVE-2014-2744、CVE-2014-2745 Prosody是一个用Lua语言编写的Jabber/XMPP服务器软件。 Prosody处理压缩流存在错误,允许攻击者通过XMPP流提交特制的XML消耗系统资源,造成拒绝服务攻击。 0 Prosody 0.x Prosody 0.9.4版本已修复该漏洞,建议用户下载使用: http://www.prosody.im...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2744, CVE-2014-2745. Reason: This candidate is a duplicate of CVE-2014-2744 and/or CVE-2014-2745. Notes: All CVE users should reference CVE-2014-2744 and/or CVE-2014-2745 instead of this candidate. All references and...