jabber 1.4.2, 1.4.2a, and possibly earlier versions, does not properly handle SSL connections, which allows remote attackers to cause a denial of service (crash).Referenceshttp://www.securityfocus.com/bid/9376http://www.debian.org/security/2004/dsa-414http://secunia.com/advisories/10559http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:005http://www.osvdb.org/3345https://exchange.xforce.ibmcloud.com/vulnerabilities/14158
