EUVD-2016-10715

Malware in sbrugna...

SUSE CVE-2016-9928

MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets...

Ubuntu 16.04 LTS : MCabber vulnerability (USN-4506-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4506-1 advisory. It was discovered that MCabber does not properly manage roster pushes. An attacker could possibly use this issue to remotely perform machine-in-the-middle attacks...

CVE-2016-9928

MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets...

mcabber user emulation vulnerability

mcabber is an XMPP Jabber console client. A user emulation vulnerability exists in mcabber. The vulnerability exists because the program fails to properly implement "XEP-0280: Message Carbons". A remote attacker can exploit this vulnerability to impersonate an arbitrary user...