CVE-2012-4672

Currently unrated

Key Information:

Vendor: Apple
Status: Ichat Server
Vendor: CVE Published:; 25 August 2012

Summary

Apple iChat Server does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via responses for domains that were not asserted.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/78133

vdb-entryx_refsource_XF

http://xmpp.org/resources/security-notices/server-dialback/

x_refsource_MISC

Timeline

Vulnerability published
Aug 25, 2012
Vulnerability Reserved
Aug 25, 2012