Unrated severityNVD Advisory· Published Sep 21, 2004· Updated Jun 16, 2026
CVE-2004-1378
CVE-2004-1378
Description
The expat XML parser code, as used in the open source Jabber (jabberd) 1.4.3 and earlier, jadc2s 0.9.0 and earlier, and possibly other packages, allows remote attackers to cause a denial of service (application crash) via a malformed packet to a socket that accepts XML connections.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:a:jabberstudio:jabberd:1.4:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:jabberstudio:jabberd:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.2a:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jabberd:1.4.3:*:*:*:*:*:*:*
- (no CPE)range: <=1.4.3
cpe:2.3:a:jabberstudio:jadc2s:0.6:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:jabberstudio:jadc2s:0.6:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jadc2s:0.7:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jadc2s:0.8:*:*:*:*:*:*:*
- cpe:2.3:a:jabberstudio:jadc2s:0.9:*:*:*:*:*:*:*
- (no CPE)range: <=0.9.0
Patches
Vulnerability mechanics
References
12- devel.amessage.info/jabberd14/nvdPatch
- www.gentoo.org/security/en/glsa/glsa-200409-31.xmlnvdPatch
- www.securityfocus.com/bid/11231nvdPatch
- mail.jabber.org/pipermail/jabberd/2004-September/002004.htmlnvd
- marc.infonvd
- secunia.com/advisories/12636nvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- www.osvdb.org/10257nvd
- www.vuxml.org/freebsd/2e25d38b-54d1-11d9-b612-000c6e8f12ef.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17466nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17467nvd
News mentions
0No linked articles in our index yet.