The expat XML parser code, as used in the open source Jabber (jabberd) 1.4.3 and earlier, jadc2s 0.9.0 and earlier, and possibly other packages, allows remote attackers to cause a denial of service (application crash) via a malformed packet to a socket that accepts XML connections.
Software | From | Fixed in |
---|---|---|
jabberstudio / jadc2s | 0.6 | 0.6.x |
jabberstudio / jadc2s | 0.7 | 0.7.x |
jabberstudio / jadc2s | 0.8 | 0.8.x |
jabberstudio / jadc2s | 0.9 | 0.9.x |
jabberstudio / jabberd | 1.4 | 1.4.x |
jabberstudio / jabberd | 1.4.1 | 1.4.1.x |
jabberstudio / jabberd | 1.4.2 | 1.4.2.x |
jabberstudio / jabberd | 1.4.2a | 1.4.2a.x |
jabberstudio / jabberd | 1.4.3 | 1.4.3.x |