Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2017 Greenbone AGOPENVAS:1361412562310108285
HistoryNov 07, 2017 - 12:00 a.m.

Apache ActiveMQ 'CVE-2011-4905' Denial of Service Vulnerability - Windows

2017-11-0700:00:00
Copyright (C) 2017 Greenbone AG
plugins.openvas.org
8

8.4 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON

Apache ActiveMQ is prone to a denial of service vulnerability.

# SPDX-FileCopyrightText: 2017 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:apache:activemq";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.108285");
  script_version("2024-02-15T05:05:40+0000");
  script_cve_id("CVE-2011-4905");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_tag(name:"last_modification", value:"2024-02-15 05:05:40 +0000 (Thu, 15 Feb 2024)");
  script_tag(name:"creation_date", value:"2017-11-07 10:54:29 +0100 (Tue, 07 Nov 2017)");

  script_name("Apache ActiveMQ 'CVE-2011-4905' Denial of Service Vulnerability - Windows");

  script_copyright("Copyright (C) 2017 Greenbone AG");
  script_category(ACT_GATHER_INFO);
  script_family("Denial of Service");
  script_dependencies("gb_apache_activemq_consolidation.nasl", "os_detection.nasl");
  script_mandatory_keys("apache/activemq/detected", "Host/runs_windows");

  script_xref(name:"URL", value:"http://activemq.apache.org/security-advisories.html");

  script_tag(name:"summary", value:"Apache ActiveMQ is prone to a denial of service vulnerability.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"impact", value:"Successful exploitation allows remote
  attackers to cause a Denial of Service (file-descriptor exhaustion and broker crash or hang).");

  script_tag(name:"affected", value:"Apache ActiveMQ version before 5.6.0.");

  script_tag(name:"solution", value:"Update to Apache ActiveMQ version 5.6.0, or later.");

  script_tag(name:"qod_type", value:"remote_banner");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if( ! vers = get_app_version( cpe:CPE, nofork:TRUE ) ) exit( 0 );

if( version_is_less( version:vers, test_version:"5.6.0" ) ) {
  report = report_fixed_ver( installed_version:vers, fixed_version:"5.6.0" );
  security_message( port:0, data:report );
  exit( 0 );
}

exit( 99 );

Related

ubuntucve 1
cve 1
cvelist 1
prion 1
osv 1
github 1
debiancve 1
openvas 1
ibm 9
ubuntucve
ubuntucve
CVE-2011-4905
2012-01-05 00:00:00
cve
cve
CVE-2011-4905
2012-01-05 16:55:00
cvelist
cvelist
CVE-2011-4905
2012-01-05 16:00:00
prion
prion
Code injection
2012-01-05 16:55:00
osv
osv
Denial of Service in Apache ActiveMQ
2022-05-17 05:35:59
github
github
Denial of Service in Apache ActiveMQ
2022-05-17 05:35:59
debiancve
debiancve
CVE-2011-4905
2012-01-05 16:55:00
openvas
openvas
Apache ActiveMQ 'CVE-2011-4905' Denial of Service Vulnerability - Linux
2017-11-07 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains vulnerable components and libraries. (CVE-2011-4905, CVE-2014-3576)
2018-06-16 22:06:31
Security Bulletin: Multiple Security Vulnerabilities in ActiveMQ Affect IBM Sterling B2B Integrator
2020-02-05 00:53:36
Security Bulletin: Vulnerabilities in Apache Tomcat affect IBM SDN VE (CVE- 2011-4905, CVE-2013-0248,CVE-2014-0050,CVE-2014-3577,CVE-2014-0054,CVE- 2013-7315,CVE-2013-6429,CVE-2014-0119,CVE-2014-0099,CVE-2014-1904)
2018-06-18 01:27:28

8.4 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON
Related for OPENVAS:1361412562310108285
ubuntucve1cve1cvelist1prion1osv1github1debiancve1openvas1ibm9