Jabber Studio Jabberd Server SASL Negotiation Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running Jabberd server and is prone to denial of service vulnerability.

Impact

Successful exploitation may allow remote attackers to cause the application to crash, creating a denial-of-service condition. Impact Level: Application

Solution

Upgrade to Jabber Studio jabberd Server version 2.0s11 or later, For updates refer to http://jabberd.org/

Insight

The flaw is caused due to an error within the handling of SASL negotiation. This can be exploited to cause a crash by sending a 'response' stanza before an 'auth' stanza.

Affected

Jabber Studio jabberd Server version before 2.0s11

References

http://secunia.com/advisories/19281
http://xforce.iss.net/xforce/xfdb/25334

Updated on 2017-03-28

Severity

Classification

CVE CVE-2006-1329

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Asterisk RTP Text Frames Denial Of Service Vulnerability
Denial Of Service Vulnerability in OpenSSL June-09 (Linux)
COWON Media Center JetAudio .wav File Denial Of Service Vulnerability
Adobe Acrobat PDF File Denial Of Service Vulnerability
ClamAV Hash Manager Off-By-One Denial of Service Vulnerability (Win)

Jabber Studio Jabberd Server SASL Negotiation Denial of Service Vulnerability

Take action and discover your vulnerabilities