9 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9877
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8 and 3.6.x before 3.6.6 and RabbitMQ for PCF 1.5.x before 1.5.20, 1.6.x before 1.6.12, and 1.7.x...
RHEL 7 : rabbitmq-server (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - rabbitmq: MQTT connection authentication succeeds with empty password CVE-2016-9877 Note that Nessus has not tested...
RHEL 6 : rabbitmq (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - rabbitmq: MQTT connection authentication succeeds with empty password CVE-2016-9877 - An issue was...
openSUSE: Security Advisory for rabbitmq-server (openSUSE-SU-2017:0306-1)
The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : rabbitmq-server (openSUSE-2017-156)
This update for rabbitmq-server fixes the following issue : - CVE-2016-9877: An issue in Pivotal RabbitMQ caused connection authentication with a username/password pair to succeed if an existing username was provided but the password is omitted from the connection request. Connections that use TL...
Security update for rabbitmq-server (important)
This update for rabbitmq-server fixes the following issue: - CVE-2016-9877: An issue in Pivotal RabbitMQ caused connection authentication with a username/password pair to succeed if an existing username was provided but the password is omitted from the connection request. Connections that use TLS...
[SECURITY] [DSA 3761-1] rabbitmq-server security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3761-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 13, 2017 https://www.debian.org/security/faq -...
CVE-2016-9877
An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8 and 3.6.x before 3.6.6 and RabbitMQ for PCF 1.5.x before 1.5.20, 1.6.x before 1.6.12, and 1.7.x before 1.7.7. MQTT MQ Telemetry Transport connection authentication with a username/password pair succeeds if an existing username is provid...
CVE-2016-9877
CVE-2016-9877 affects Pivotal RabbitMQ 3.x (before 3.5.8) and 3.6.x (before 3.6.6), and RabbitMQ for PCF 1.5.x (before 1.5.20), 1.6.x (before 1.6.12), and 1.7.x (before 1.7.7). The issue allows MQTT authentication to succeed when a username is provided but the password is omitted from the connect...