Difference between revisions of "IQ Reply Spoofing"
Jump to navigation
Jump to search
(Created page with "http://tools.ietf.org/html/draft-alkemade-xmpp-iq-validation-00 http://mailman.jabber.org/pipermail/jdev/2014-March/089892.html") |
|||
Line 2: | Line 2: | ||
http://mailman.jabber.org/pipermail/jdev/2014-March/089892.html | http://mailman.jabber.org/pipermail/jdev/2014-March/089892.html | ||
== Software Components == | |||
=== Vulnerable === | |||
* '''Conversations''': https://github.com/siacs/Conversations/issues/20 | |||
=== Not Vulnerable / Fixed === | |||
* '''Smack''', fixed with 4.0 ([https://igniterealtime.org/issues/browse/SMACK-533 SMACK-533], [https://igniterealtime.org/issues/browse/SMACK-538 SMACK-538], [http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0364 CVE-2014-0364]) |
Revision as of 12:39, 30 December 2014
http://tools.ietf.org/html/draft-alkemade-xmpp-iq-validation-00
http://mailman.jabber.org/pipermail/jdev/2014-March/089892.html
Software Components
Vulnerable
- Conversations: https://github.com/siacs/Conversations/issues/20
Not Vulnerable / Fixed
- Smack, fixed with 4.0 (SMACK-533, SMACK-538, CVE-2014-0364)