CVE-2010-0305

Published: Feb 3, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20100129 CVE Request -- ejabberd

mailing-list

x_refsource_MLIST

38337

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20100129 Re: CVE Request -- ejabberd

mailing-list

x_refsource_MLIST

62066

vdb-entry

x_refsource_OSVDB

ADV-2010-0894

vdb-entry

x_refsource_VUPEN

ejabberd-client2server-dos(56025)

vdb-entry

x_refsource_XF

DSA-2033

vendor-advisory

x_refsource_DEBIAN

https://support.process-one.net/browse/EJAB-1173

x_refsource_CONFIRM

38003

vdb-entry

x_refsource_BID

39423

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2010-0305

Description

Affected Products

References