CVE-2016-9928

Summary

MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets.

Affected Software

VendorProductVersion RangeStatus
MCabberMCabberbefore 1.0.4affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References