Back to search
CVE-2009-5006
Published: Oct 18, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The SessionAdapter::ExchangeHandlerImpl::checkAlternate function in broker/SessionAdapter.cpp in the C++ Broker component in Apache Qpid before 0.6, as used in Red Hat Enterprise MRG before 1.3 and other products, allows remote authenticated users to cause a denial of service (NULL pointer dereference, daemon crash, and cluster outage) by attempting to modify the alternate of an exchange.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2010:0774
vendor-advisory
x_refsource_REDHAT
http://svn.apache.org/viewvc?revision=811188&view=revision
x_refsource_CONFIRM
ADV-2010-2684
vdb-entry
x_refsource_VUPEN
https://issues.apache.org/jira/browse/QPID-2080
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=642377
x_refsource_CONFIRM
41812
third-party-advisory
x_refsource_SECUNIA
41710
third-party-advisory
x_refsource_SECUNIA
RHSA-2010:0773
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now