The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | activemq | < 5.6.0+dfsg1-4+deb8u1 | activemq_5.6.0+dfsg1-4+deb8u1_all.deb |
Debian | 11 | all | activemq | < 5.6.0+dfsg1-4+deb8u1 | activemq_5.6.0+dfsg1-4+deb8u1_all.deb |
Debian | 10 | all | activemq | < 5.6.0+dfsg1-4+deb8u1 | activemq_5.6.0+dfsg1-4+deb8u1_all.deb |
Debian | 999 | all | activemq | < 5.6.0+dfsg1-4+deb8u1 | activemq_5.6.0+dfsg1-4+deb8u1_all.deb |
Debian | 13 | all | activemq | < 5.6.0+dfsg1-4+deb8u1 | activemq_5.6.0+dfsg1-4+deb8u1_all.deb |