Security Advisory

CVE-2012-3525

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-25 16:00:00

Last updated 2024-08-06 20:05:12

Assigner redhat

State PUBLISHED

Description

s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via a (1) Verify Response or (2) Authorization Response.

← Browse all CVEs View on cve.org ↗