NVD

Id
10788  
Name
CVE-2011-4320  
Description
The mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service (infinite loop) via a stanza with a publish tag that lacks a node attribute.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2012-02-17  
Modified Date
2012-02-29  
Seq
2011-4320  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
60633 10788 CVE-2011-4320 [oss-security] 20111119 CVE request: ejabberd before 2.1.9  View
60634 10788 CVE-2011-4320 [oss-security] 20111119 Re: CVE request: ejabberd before 2.1.9  View
60635 10788 CVE-2011-4320 http://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.9  View
60636 10788 CVE-2011-4320 https://support.process-one.net/browse/EJAB-1498  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
25807 JVNDB-2012-001514 ejabberd の mod_pubsub モジュール (mod_pubsub.erl) におけるサービス運用妨害 (無限ループ) の脆弱性 ejabberd の mod_pubsub モジュール (mod_pubsub.erl) には、サービス運用妨害 (無限ループ) 状態となる脆弱性が存在します。 CVE-2011-4320 52227 CVE-2011-4320 10788 4 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001514.html 2012-02-18 2014-08-11 View