12 matches found
Security Bulletin: Multiple Vulnerabilities in IBM Application Performance Management
Summary Multiple vulnerabilities were addressed in IBM Application Performance Management 8.1.4.0 IF15 patch Vulnerability Details CVEID:CVE-2020-13920 DESCRIPTION: Apache ActiveMQ is vulnerable to a man-in-the-middle attack, caused by improper authentication validation when connecting to the JMX...
Security Bulletin: IBM QRadar SIEM contains vulnerable components and libraries. (CVE-2011-4905, CVE-2014-3576)
Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. Vulnerability Details CVEID: CVE-2011-4905 DESCRIPTION: Apache ActiveMQ is vulnerable to a denial of service, caused by an error in the failover mechanism when...
Apache ActiveMQ 'CVE-2014-3576' Denial of Service Vulnerability - Linux
Apache ActiveMQ is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:activemq";...
NetIQ Sentinel < 7.4.1 Multiple Vulnerabilities
The version of Novell NetIQ Sentinel server installed on the remote host is prior to 7.4.1. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in Apache ActiveMQ in the processControlCommand function within the file broker/TransportConnection.java. An unauthenticated, remote...
Multiple Security issues with NetIQ Sentinel
Sentinel 7.4.1 resolves multiple security vulnerabilities SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netiq:sentinel"; if...
Apache ActiveMQ Shutdown Command Denial of Service (CVE-2014-3576)
A denial of service vulnerability exists in Apache ActiveMQ. The vulnerability is due to missing authentication for the undocumented shutdown command. A remote, unauthenticated attacker may exploit this vulnerability by sending crafted packets to the server. Successful exploitation could lead to ...
DEBIAN-CVE-2014-3576
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service shutdown via a shutdown command...
CVE-2014-3576
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service shutdown via a shutdown command...
CVE-2014-3576
CVE-2014-3576 affects Apache ActiveMQ before 5.11.0, where the processControlCommand function in broker/TransportConnection.java allows a remote attacker to shut down the broker via a shutdown command, causing a denial of service. The vulnerability is confirmed in multiple connected sources, incl...
[SECURITY] [DSA 3330-1] activemq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3330-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 07, 2015 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3330-1 (activemq - security update)
It was discovered that the Apache ActiveMQ message broker is susceptible to denial of service through an undocumented, remote shutdown command. OpenVAS Vulnerability Test $Id: deb3330.nasl 7798 2017-11-17 05:43:16Z teissa $ Auto-generated from advisory DSA 3330-1 using nvtgen 1.0 Script version:...
Debian: Security Advisory (DSA-3330-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...