This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.
The remote instant messaging server is affected by a denial of service
The remote host is running jabberd, an open source messaging system
based on the Jabber protocol.
The version of jabberd installed on the remote host suffers a segfault
when a client sends a SASL 'response' stanza before a SASL 'auth'
stanza. An unauthenticated, remote attacker can leverage this flaw to
crash the application's c2s component, thereby denying service to
See also :
Upgrade to jabberd 2s11 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true
Family: Denial of Service
Nessus Plugin ID: 21120 (jabberd_sasl_stanza_dos.nasl)
Bugtraq ID: 17155
CVE ID: CVE-2006-1329
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.