Login

Tenable Community & Support

Tenable University

CVE-2012-3525

MEDIUM

Description

s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via a (1) Verify Response or (2) Authorization Response.

References

http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html

http://rhn.redhat.com/errata/RHSA-2012-1538.html

http://rhn.redhat.com/errata/RHSA-2012-1539.html

http://secunia.com/advisories/50124

http://secunia.com/advisories/50859

http://www.mail-archive.com/[email protected]/msg01903.html

http://www.openwall.com/lists/oss-security/2012/08/22/5

http://www.openwall.com/lists/oss-security/2012/08/22/6

http://www.securityfocus.com/bid/55167

http://xmpp.org/resources/security-notices/server-dialback/

https://bugzilla.redhat.com/show_bug.cgi?id=850872

https://github.com/Jabberd2/jabberd2/commit/aabcffae560d5fd00cd1d2ffce5d760353cf0a4d

Details

Source: MITRE

Published: 2012-08-25

Updated: 2013-06-15

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 5.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Impact Score: 4.9

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:jabber2:jabberd2:2.1.19:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.1:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.2:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.3:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.4:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.5:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.6:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.7:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.8:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.9:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.10:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.11:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.12:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.13:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.14:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.15:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.16:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.17:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.18:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.20:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.21:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.22:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.23:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.1.24:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.0:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.1:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.2:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.3:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.4:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.5:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.6:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.7:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.7.1:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.8:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.9:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.10:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.11:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.12:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.13:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.14:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:2.2.15:*:*:*:*:*:*:*

cpe:2.3:a:jabberd2:jabberd2:*:*:*:*:*:*:*:* versions up to 2.2.16 (inclusive)

Tenable Plugins

View all (10 total)

ID	Name	Product	Family	Severity
801018	Mac OS X 10.8 < 10.8.3 Multiple Vulnerabilities (Security Update 2013-001)	Log Correlation Engine	Operating System Detection	high
6717	Mac OS X 10.8 < 10.8.3 Multiple Vulnerabilities (Security Update 2013-001)	Nessus Network Monitor	Web Clients	high
65578	Mac OS X Multiple Vulnerabilities (Security Update 2013-001)	Nessus	MacOS X Local Security Checks	high
64067	RHEL 5 / 6 : jabberd (RHSA-2012:1539)	Nessus	Red Hat Local Security Checks	medium
64066	RHEL 5 / 6 : jabberd in Satellite Server (RHSA-2012:1538)	Nessus	Red Hat Local Security Checks	medium
62801	Mac OS X : OS X Server < 2.1.1 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	medium
62138	Fedora 18 : jabberd-2.2.17-1.fc18 (2012-12418)	Nessus	Fedora Local Security Checks	medium
61758	Fedora 17 : jabberd-2.2.14-4.fc17 (2012-12487)	Nessus	Fedora Local Security Checks	medium
61757	Fedora 16 : jabberd-2.2.14-4.fc16 (2012-12481)	Nessus	Fedora Local Security Checks	medium
61639	FreeBSD : jabberd -- domain spoofing in server dialback protocol (4d1d2f6d-ec94-11e1-8bd8-0022156e8794)	Nessus	FreeBSD Local Security Checks	medium