5 matches found
CVE-2022-47634
Isode M‑Link vulnerability CVE-2022-47634 affects Isode M-Link versions R16.2v1 through R17.0 prior to R17.0v24. The issue allows non‑administrative users to access and manipulate archive data via certain HTTP endpoints (LINK-2867). Remediation per PT-2023-15445 is to upgrade to version R17.0v24 ...
CVE-2014-2742
Isode M-Link before 16.0v7 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...
Code injection
Isode M-Link before 16.0v7 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...
CVE-2014-2742
Isode M-Link before 16.0v7 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...
CVE-2014-2742
Summary: CVE-2014-2742 affects Isode M-Link prior to version 16.0v7. The issue is a failure to properly restrict the processing of compressed XML elements, enabling a remote attacker to trigger a denial of service through a crafted XMPP stream (an “xmppbomb”). Affected software: Isode M-Link (bef...