Lucene search

[email protected]NVD:CVE-2010-0305

HistoryFeb 03, 2010 - 7:30 p.m.

CVE-2010-0305

2010-02-0319:30:00

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

High

EPSS

0.083

Percentile

94.4%

JSON

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.

Affected configurations

Nvd

Node

process-oneejabberdRange≤2.1.2

process-oneejabberdMatch0.9

process-oneejabberdMatch0.9.1

process-oneejabberdMatch0.9.8

process-oneejabberdMatch1.0.0

process-oneejabberdMatch1.1.0

process-oneejabberdMatch1.1.1

process-oneejabberdMatch1.1.1.0

process-oneejabberdMatch1.1.1.1

process-oneejabberdMatch1.1.2

process-oneejabberdMatch1.1.3

process-oneejabberdMatch1.1.14

process-oneejabberdMatch2.0.0

process-oneejabberdMatch2.0.0beta1

process-oneejabberdMatch2.0.0rc1

process-oneejabberdMatch2.0.1_2

process-oneejabberdMatch2.0.2

process-oneejabberdMatch2.0.3

process-oneejabberdMatch2.0.4

process-oneejabberdMatch2.0.5

process-oneejabberdMatch2.1.0

process-oneejabberdMatch2.1.1

VendorProductVersionCPE
process-oneejabberd*cpe:2.3:a:process-one:ejabberd:*:*:*:*:*:*:*:*
process-oneejabberd0.9cpe:2.3:a:process-one:ejabberd:0.9:*:*:*:*:*:*:*
process-oneejabberd0.9.1cpe:2.3:a:process-one:ejabberd:0.9.1:*:*:*:*:*:*:*
process-oneejabberd0.9.8cpe:2.3:a:process-one:ejabberd:0.9.8:*:*:*:*:*:*:*
process-oneejabberd1.0.0cpe:2.3:a:process-one:ejabberd:1.0.0:*:*:*:*:*:*:*
process-oneejabberd1.1.0cpe:2.3:a:process-one:ejabberd:1.1.0:*:*:*:*:*:*:*
process-oneejabberd1.1.1cpe:2.3:a:process-one:ejabberd:1.1.1:*:*:*:*:*:*:*
process-oneejabberd1.1.1.0cpe:2.3:a:process-one:ejabberd:1.1.1.0:*:*:*:*:*:*:*
process-oneejabberd1.1.1.1cpe:2.3:a:process-one:ejabberd:1.1.1.1:*:*:*:*:*:*:*
process-oneejabberd1.1.2cpe:2.3:a:process-one:ejabberd:1.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
process-one	ejabberd	*	cpe:2.3:a:process-one:ejabberd::::::::
process-one	ejabberd	0.9	cpe:2.3:a:process-one:ejabberd:0.9:::::::*
process-one	ejabberd	0.9.1	cpe:2.3:a:process-one:ejabberd:0.9.1:::::::*
process-one	ejabberd	0.9.8	cpe:2.3:a:process-one:ejabberd:0.9.8:::::::*
process-one	ejabberd	1.0.0	cpe:2.3:a:process-one:ejabberd:1.0.0:::::::*
process-one	ejabberd	1.1.0	cpe:2.3:a:process-one:ejabberd:1.1.0:::::::*
process-one	ejabberd	1.1.1	cpe:2.3:a:process-one:ejabberd:1.1.1:::::::*
process-one	ejabberd	1.1.1.0	cpe:2.3:a:process-one:ejabberd:1.1.1.0:::::::*
process-one	ejabberd	1.1.1.1	cpe:2.3:a:process-one:ejabberd:1.1.1.1:::::::*
process-one	ejabberd	1.1.2	cpe:2.3:a:process-one:ejabberd:1.1.2:::::::*