Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2014-2770

Malware in sbrugna...

7.8CVSS6.4AI score0.01942EPSS
Exploits1References6
OSV
OSV
added 2014/04/11 1:55 a.m.5 views

CVE-2014-2744

plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...

6.4AI score
Exploits0References10
NVD
NVD
added 2014/04/11 1:55 a.m.14 views

CVE-2014-2743

plugins/modcompression.lua in Lightwitch Metronome through 3.4 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...

7.8CVSS6.5AI score0.01942EPSS
Exploits1References4
Prion
Prion
added 2014/04/11 1:55 a.m.15 views

Code injection

plugins/modcompression.lua in Lightwitch Metronome through 3.4 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...

7.8CVSS7.1AI score0.01942EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2014/04/11 1:55 a.m.27 views

CVE-2014-2744

plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...

7.8CVSS5.9AI score0.03313EPSS
Exploits2References2
Cvelist
Cvelist
added 2014/04/11 1:0 a.m.24 views

CVE-2014-2743

plugins/modcompression.lua in Lightwitch Metronome through 3.4 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...

6.5AI score0.01942EPSS
Exploits1References4
CVE
CVE
added 2014/04/11 1:0 a.m.90 views

CVE-2014-2744

CVE-2014-2744 affects Prosody (Lua XMPP server) before 0.9.4 and Lightwitch Metronome through 3.4. The vulnerability arises when stream compression is negotiated during an unauthenticated session, allowing a remote attacker to cause a denial of service via highly compressed XML elements in an XMP...

7.8CVSS6.5AI score0.03313EPSS
Exploits2References8Affected Software1
CVE
CVE
added 2014/04/11 1:0 a.m.43 views

CVE-2014-2743

Lightwitch Metronome up to version 3.4 is affected by a flaw in plugins/mod_compression.lua that does not properly restrict processing of compressed XML elements. This enables remote attackers to cause denial of service by sending a crafted XMPP stream (an “xmppbomb” attack), compromising availab...

7.8CVSS6.7AI score0.01942EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2014/04/11 1:0 a.m.19 views

CVE-2014-2744

plugins/modcompression.lua in 1 Prosody before 0.9.4 and 2 Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cause a denial of service resource consumption via compressed XML elements in an XMPP stream, aka an...

7.8CVSS6.2AI score0.03313EPSS
Exploits2
Rows per page
Query Builder