Remote Roster Modification and Message Interception Vulnerability in Gajim before 0.16.5

Remote Roster Modification and Message Interception Vulnerability in Gajim before 0.16.5

CVE-2015-8688 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

Gajim before 0.16.5 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza.

Learn more about our Web Application Penetration Testing UK.