CVE

Id
52232  
CVE No.
CVE-2011-4320  
Status
Candidate  
Description
The mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service (infinite loop) via a stanza with a publish tag that lacks a node attribute.  
Phase
Assigned (20111104)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
558125 52232 CVE-2011-4320 MLIST:[oss-security] 20111119 CVE request: ejabberd before 2.1.9  View
558126 52232 CVE-2011-4320 URL:http://www.openwall.com/lists/oss-security/2011/11/19/1  View
558127 52232 CVE-2011-4320 MLIST:[oss-security] 20111119 Re: CVE request: ejabberd before 2.1.9  View
558128 52232 CVE-2011-4320 URL:http://www.openwall.com/lists/oss-security/2011/11/19/2  View
558129 52232 CVE-2011-4320 CONFIRM:http://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.9  View
558130 52232 CVE-2011-4320 CONFIRM:https://support.process-one.net/browse/EJAB-1498  View
558131 52232 CVE-2011-4320 OSVDB:77302  View
558132 52232 CVE-2011-4320 URL:http://www.osvdb.org/77302  View
558133 52232 CVE-2011-4320 SECUNIA:46915  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
25528 JVNDB-2012-001235 Linux kernel の NFS 実装におけるサービス運用妨害 (DoS) の脆弱性 Linux kernel の NFS 実装は、データを適切に初期化せずに関数を呼び出すため、サービス運用妨害 (NULL ポインタデリファレンスおよび O_DIRECT oops) 状態となる脆弱性が存在します。 CVE-2011-4325 52232 4.9 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001235.html  View