ID de Prueba:	1.3.6.1.4.1.25623.1.0.52260
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: jabber
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: jabber CVE-2004-1378 The expat XML parser code, as used in the open source Jabber (jabberd) 1.4.3 and earlier, jadc2s 0.9.0 and earlier, and possibly other packages, allows remote attackers to cause a denial of service (application crash) via a malformed packet to a socket that accepts XML connections. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1378 BugTraq ID: 11231 http://www.securityfocus.com/bid/11231 Bugtraq: 20040920 Possible DoS attack against jabberd 1.4.3 and jadc2s 0.9.0 (Google Search) http://marc.info/?l=bugtraq&m=109583829122679&w=2 http://www.gentoo.org/security/en/glsa/glsa-200409-31.xml http://mail.jabber.org/pipermail/jabberd/2004-September/002004.html http://www.osvdb.org/10257 http://securitytracker.com/id?1011383 http://securitytracker.com/id?1011384 http://secunia.com/advisories/12636 XForce ISS Database: jabberd-xml-dos(17466) https://exchange.xforce.ibmcloud.com/vulnerabilities/17466 XForce ISS Database: jadc2s-xml-dos(17467) https://exchange.xforce.ibmcloud.com/vulnerabilities/17467
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.