0.006 Low
EPSS
Percentile
78.0%
The mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service (infinite loop) via a stanza with a publish tag that lacks a node attribute.
launchpad.net/bugs/cve/CVE-2011-4320
nvd.nist.gov/vuln/detail/CVE-2011-4320
security-tracker.debian.org/tracker/CVE-2011-4320
support.process-one.net/browse/EJAB-1498
www.cve.org/CVERecord?id=CVE-2011-4320