Comment 5 for bug 596676

After consulting with one of upstream developers, it became clear this bug cannot be exploited from the outside and so it's not really that serious as it might sound because it does not introduce a vulnerability.
To exploit this bug, a hostile party should convince the server administrator to misconfigure one or more of their xmpp components; clearly, such an attacker could as well convince her to run `rm -rf /` as root.