jabber 1.4.2, 1.4.2a, and possibly earlier versions, does not properly handle SSL connections, which allows remote attackers to cause a denial of service (crash).
https://exchange.xforce.ibmcloud.com/vulnerabilities/14158
http://www.securityfocus.com/bid/9376
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:005