Published: 26/03/2013 Updated: 26/03/2013
CVSS v2 Base Score: 6.3 | Impact Score: 6.9 | Exploitability Score: 6.8
VMScore: 561
Vector: AV:N/AC:M/Au:S/C:N/I:N/A:C

Vulnerability Summary

The XML parser in the Cisco Jabber IM application for Android allows remote authenticated users to cause a denial of service (blocked connection) by leveraging an entry on a Buddy list and sending a crafted XMPP presence update message, aka Bug ID CSCue38383.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco jabber im -

Vendor Advisories

A vulnerability in the XML parser of Cisco Jabber IM for Android could allow an authenticated, remote attacker to prevent the client to connect, causing a denial of service condition The vulnerability is due to insufficient validation of crafted Extensible Messaging and Presence Protocol (XMPP) presence update messages, which are received when t ...