Computer Security
[EN] securityvulns.ru no-pyccku


ejabberd protection bypass
Published:27.10.2014
Source:
SecurityVulns ID:14052
Type:m-i-t-m
Threat Level:
5/10
Description:Server does not enforces encryption.
Affected:EJABBERD : ejabberd 2.1
CVE:CVE-2014-8760 (ejabberd before 2.1.13 does not enforce the starttls_required setting when compression is used, which causes clients to establish connections without encryption.)
Original documentdocumentMANDRIVA, [ MDVSA-2014:207 ] ejabberd (27.10.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod