|
|
Subscribe / Log in / New account

jitsi: user spoofing

Package(s):jitsi CVE #(s):CVE-2017-5603
Created:February 20, 2017 Updated:February 22, 2017
Description: From the Mageia advisory:

An incorrect implementation of XEP-0280: Message Carbons in Jitsi and other XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks (CVE-2017-5603).

Alerts:
Mageia MGASA-2017-0049 jitsi 2017-02-18
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds