CVE-2013-6169

CVE-2013-6169

EPSS 1.6%

The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.12/http://www.debian.org/security/2013/dsa-2775