IQ Reply Spoofing
Jump to navigation
Jump to search
http://tools.ietf.org/html/draft-alkemade-xmpp-iq-validation-00
http://mailman.jabber.org/pipermail/jdev/2014-March/089892.html
Software Components
Vulnerable
- Conversations: https://github.com/siacs/Conversations/issues/20
Not Vulnerable / Fixed
- Smack, fixed with 4.0 (SMACK-533, SMACK-538, CVE-2014-0364)