CVE-2012-4671
N/A
N/A
Summary
psyced before 20120821 does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via responses for domains that were not asserted.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.psyced.org/files/psyced-20120821.tar.bz2
- http://xmpp.org/resources/security-notices/server-dialback/
References
- http://www.psyced.org/files/psyced-20120821.tar.bz2
- http://xmpp.org/resources/security-notices/server-dialback/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.