CVE-2010-0305

Опубликовано: 03 фев. 2010

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:process-one:ejabberd:*:*:*:*:*:*:*:*

Версия до 2.1.2 (включая)

cpe:2.3:a:process-one:ejabberd:0.9:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:0.9.1:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:0.9.8:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.0:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.1.0:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:1.1.14:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.0:beta1:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.0:rc1:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.1_2:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.3:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.0.5:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.1.0:*:*:*:*:*:*:*

cpe:2.3:a:process-one:ejabberd:2.1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.0188

Низкий

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2010-0305

ubuntu

почти 16 лет назад

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.

CVE-2010-0305

redhat

почти 16 лет назад

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.

CVE-2010-0305

debian

почти 16 лет назад

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to c ...

GHSA-32wp-p7j2-grh2

github

больше 3 лет назад

ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.

EPSS

Процентиль: 83%

0.0188

Низкий

5 Medium

CVSS2

Дефекты

CWE-20