Unrated severityNVD Advisory· Published Sep 21, 2004· Updated Apr 16, 2026
CVE-2004-1378
CVE-2004-1378
Description
The expat XML parser code, as used in the open source Jabber (jabberd) 1.4.3 and earlier, jadc2s 0.9.0 and earlier, and possibly other packages, allows remote attackers to cause a denial of service (application crash) via a malformed packet to a socket that accepts XML connections.
Affected products
9cpe:2.3:a:jabberstudio:jabberd:1.4:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:jabberstudio:jabberd:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.2a:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:jabberstudio:jadc2s:0.6:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:jabberstudio:jadc2s:0.6:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jadc2s:0.7:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jadc2s:0.8:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jadc2s:0.9:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- devel.amessage.info/jabberd14/nvdPatch
- www.gentoo.org/security/en/glsa/glsa-200409-31.xmlnvdPatch
- www.securityfocus.com/bid/11231nvdPatch
- mail.jabber.org/pipermail/jabberd/2004-September/002004.htmlnvd
- marc.infonvd
- secunia.com/advisories/12636nvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- www.osvdb.org/10257nvd
- www.vuxml.org/freebsd/2e25d38b-54d1-11d9-b612-000c6e8f12ef.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17466nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17467nvd
News mentions
0No linked articles in our index yet.