This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:process-one:ejabberd:1.1.1
Detail
VendorProcess-OneFirst view 2006-05-05
ProductEjabberdLast view2014-10-24
Version1.1.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:process-one:ejabberd

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
52014-10-24CVE-2014-8760NetworkLowNone Requ...
4.32013-10-17CVE-2013-6169NetworkMediumNone Requ...
52011-06-20CVE-2011-1753NetworkLowNone Requ...
52010-02-03CVE-2010-0305NetworkLowNone Requ...
4.32009-03-17CVE-2009-0934NetworkMediumNone Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
102007-02-13CVE-2007-0903NetworkLowNone Requ...
2.12006-05-05CVE-2006-2221LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
40% (2)CWE-310Cryptographic Issues
20% (1)CWE-399Resource Management Errors
20% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
20% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:12946DSA-2248-1 ejabberd -- denial of service
oval:org.mitre.oval:def:19415DSA-2775-1 ejabberd - insecure SSL usage
oval:org.mitre.oval:def:8184DSA-1774 ejabberd -- insufficient input sanitising
oval:org.mitre.oval:def:13304DSA-1774-1 ejabberd -- insufficient input sanitising
oval:org.mitre.oval:def:7590DSA-2033 ejabberd -- heap overflow
Hide | Show 1 More...
idName
oval:org.mitre.oval:def:13558DSA-2033-1 ejabberd -- heap overflow

Open Source Vulnerability Database (OSVDB)

idDescription
73170ejabberd Entity Expansion Recursion XML Nested Entity Handling DoS
62066ejabberd ejabberd_c2s.erl c2s Message Saturation Remote DoS
52714ejabberd MUC Logs Unspecified XSS
33179ejabberd mod_roster_odbc Module Unspecified Issue
25215BitRock InstallBuilder bitrock_installer.log Symlink Arbitrary File Overwrite

OpenVAS Exploits

idDescription
2012-08-10Name : Gentoo Security Advisory GLSA 201206-10 (ejabberd)
File : nvt/glsa_201206_10.nasl
2011-08-03Name : Debian Security Advisory DSA 2248-1 (ejabberd)
File : nvt/deb_2248_1.nasl
2011-08-03Name : FreeBSD Ports: ejabberd
File : nvt/freebsd_ejabberd1.nasl
2011-07-12Name : Fedora Update for ejabberd FEDORA-2011-8415
File : nvt/gb_fedora_2011_8415_ejabberd_fc15.nasl
2011-07-08Name : Fedora Update for ejabberd FEDORA-2011-8437
File : nvt/gb_fedora_2011_8437_ejabberd_fc14.nasl
Hide | Show 8 More...
idDescription
2011-06-24Name : ejabberd XML Parsing Denial of Service Vulnerability (Windows)
File : nvt/secpod_ejabberd_dos_vuln_win.nasl
2010-04-21Name : FreeBSD Ports: ejabberd
File : nvt/freebsd_ejabberd0.nasl
2010-04-21Name : Debian Security Advisory DSA 2033-1 (ejabberd)
File : nvt/deb_2033_1.nasl
2010-02-08Name : ejabberd 'client2server' Message Remote Denial of Service Vulnerability
File : nvt/ejabberd_38003.nasl
2009-04-20Name : FreeBSD Ports: ejabberd
File : nvt/freebsd_ejabberd.nasl
2009-04-20Name : Debian Security Advisory DSA 1774-1 (ejabberd)
File : nvt/deb_1774_1.nasl
2009-03-20Name : Fedora Core 10 FEDORA-2009-2746 (ejabberd)
File : nvt/fcore_2009_2746.nasl
2009-03-20Name : Fedora Core 9 FEDORA-2009-2747 (ejabberd)
File : nvt/fcore_2009_2747.nasl

Nessus® Vulnerability Scanner

idDescription
2015-03-31Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2015-175.nasl - Type : ACT_GATHER_INFO
2015-01-19Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_ejabberd_20140731.nasl - Type : ACT_GATHER_INFO
2014-10-27Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-207.nasl - Type : ACT_GATHER_INFO
2014-01-19Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-005.nasl - Type : ACT_GATHER_INFO
2013-10-11Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2775.nasl - Type : ACT_GATHER_INFO
Hide | Show 13 More...
idDescription
2013-01-24Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2011-0881.nasl - Type : ACT_GATHER_INFO
2013-01-24Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2011-0882.nasl - Type : ACT_GATHER_INFO
2012-06-22Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201206-10.nasl - Type : ACT_GATHER_INFO
2011-06-30Name : The remote Fedora host is missing a security update.
File : fedora_2011-8415.nasl - Type : ACT_GATHER_INFO
2011-06-30Name : The remote Fedora host is missing a security update.
File : fedora_2011-8437.nasl - Type : ACT_GATHER_INFO
2011-06-27Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_01d3ab7d9c4311e0bc0f0014a5e3cda6.nasl - Type : ACT_GATHER_INFO
2011-06-10Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2248.nasl - Type : ACT_GATHER_INFO
2010-04-20Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_a04a3c13493211df83fb0015587e2cc1.nasl - Type : ACT_GATHER_INFO
2010-04-16Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2033.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote Fedora host is missing a security update.
File : fedora_2009-2746.nasl - Type : ACT_GATHER_INFO
2009-04-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_cf91c1e42b6d11de931b00e0815b8da8.nasl - Type : ACT_GATHER_INFO
2009-04-17Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1774.nasl - Type : ACT_GATHER_INFO
2009-03-19Name : The remote Fedora host is missing a security update.
File : fedora_2009-2747.nasl - Type : ACT_GATHER_INFO