DoS in Openfire |
Written by Rebecca Mints |
Thursday, 10 April 2008 18:00 |
Openfire has been found to have a vulnerability that could lead to a denial of service if exploited by a hacker. Openfire (formerly Wildfire) is a real time collaboration (RTC) server dual-licensed under the Open Source GPL and commercially. It uses the only widely adopted open protocol for instant messaging, XMPP (also called Jabber). The vulnerability has been rated at medium risk. The problem is a result of an unspecified error while processing certain data. If exploited it would cause a vulnerable server to stop responding, resulting in a denial of service condition. It is both remotely and locally exploitable. The release date of this new vulnerability was April 10th, 2008. It was reported by the vendor. REFERENCES:
|