CVE-2015-0224

Published: Oct 30, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

qpidd in Apache Qpid 0.30 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted protocol sequence set. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0203.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHBA-2016:1500

vendor-advisory

x_refsource_REDHAT

https://issues.apache.org/jira/browse/QPID-6310

x_refsource_CONFIRM

1031872

vdb-entry

x_refsource_SECTRACK

RHSA-2015:0708

vendor-advisory

x_refsource_REDHAT

72317

vdb-entry

x_refsource_BID

RHSA-2015:0661

vendor-advisory

x_refsource_REDHAT

20150126 CVE-2015-0224: qpidd can be crashed by unauthenticated user

mailing-list

x_refsource_BUGTRAQ

RHSA-2015:0662

vendor-advisory

x_refsource_REDHAT

http://packetstormsecurity.com/files/130105/Apache-Qpid-0.30-Crash.html

x_refsource_MISC

[www-announce] 20150126 CVE-2015-0224: qpidd can be crashed by unauthenticated user

mailing-list

x_refsource_MLIST

RHSA-2015:0660

vendor-advisory

x_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=1186302

x_refsource_CONFIRM

FEDORA-2016-120b194a75

vendor-advisory

x_refsource_FEDORA

RHSA-2015:0707

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-0224

Description

Affected Products

References