USN-7430-1: Dino vulnerability

Kim Alvefur discovered that Dino did not correctly sanitize certain messages. A remote attacker could possibly use this issue to leak sensitive information...

Fedora: Security Advisory for gajim (FEDORA-2022-bf1f350185)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

GHSA-HQ38-V658-G3WP XMPP Clients User Impersonation Vulnerability in Movim Moxl

An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for Movim 0.8 - 0.10...

[SECURITY] [DLA 2260-1] mcabber security update

Package : mcabber Version : 0.10.2-1+deb8u1 CVE ID : CVE-2016-9928 It was discovered that there was a "roster push attack" in mcabber, a console-based Jabber XMPP client. This is identical to CVE-2015-8688 for gajim. For Debian 8 "Jessie", this problem has been fixed in version 0.10.2-1+deb8u1. W...

USN-4306-1: Dino vulnerabilities

It was discovered that Dino incorrectly validated inputs. An attacker could use this issue to possibly obtain, inject or remove sensitive information. This update also includes a fix to the encryption implementation in Dino to support 12 byte IVs, in addition to 16 byte IVs...

Debian: Security Advisory (DSA-4524-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4524-1 : dino-im - security update

Multiple vulnerabilities have been discovered in the Dino XMPP client, which could allow spoofing message, manipulation of a user's roster contact list and unauthorised sending of message carbons. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

[SECURITY] [DSA 4524-1] dino-im security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4524-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 16, 2019 https://www.debian.org/security/faq -...

Xabber User Simulation Vulnerability

Xabber for Android is an XMPP-based live chat OTR client for Android. A user emulation vulnerability exists in XMPP Xabber versions 1.0.30, 1.0.30 VIP and beta 1.0.3 through 1.0.74. Due to the program failing to implement 'XEP-0280: Message Carbons' correctly. A remote attacker can exploit this...

Debian DLA-724-1 : mcabber security update

It was discovered that there was a 'roster push attack' 0 in mcabber, a console-based Jabber XMPP client. For Debian 7 'Wheezy', this issue has been fixed in mcabber version 0.10.1-3+deb7u1. We recommend that you upgrade your mcabber packages. 0...

[SECURITY] Fedora 22 Update: gajim-0.16.5-1.fc22

Gajim is a Jabber client written in PyGTK. The goal of Gajim's developers is to provide a full featured and easy to use xmpp client for the GTK+ users. Gajim does not require GNOME to run, even though it exists with it nicely...

[SECURITY] Fedora 21 Update: smack-4.0.6-1.fc21

Smack is an Open Source XMPP Jabber client library for instant messaging and presence. A pure Java library, it can be embedded into your applications to create anything from a full XMPP client to simple XMPP integrations such as sending notification messages and presence-enabling devices...

Fedora Update for gajim FEDORA-2013-4205

Check for the Version of gajim OpenVAS Vulnerability Test Fedora Update for gajim FEDORA-2013-4205 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

[SECURITY] Fedora 18 Update: gajim-0.15.3-1.fc18

Gajim is a Jabber client written in PyGTK. The goal of Gajim's developers is to provide a full featured and easy to use xmpp client for the GTK+ users. Gajim does not require GNOME to run, even though it exists with it nicely...

ssl-date NSE Script

Retrieves a target host's time and date from its TLS ServerHello response. In many TLS implementations, the first four bytes of server randomness are a Unix timestamp. The script will test whether this is indeed true and report the time only if it passes this test. Original idea by Jacob Appelbau...

Fedora Update for gajim FEDORA-2012-6001

Check for the Version of gajim OpenVAS Vulnerability Test Fedora Update for gajim FEDORA-2012-6001 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

XMPP Client Detection

Binary data 5687.prm...