Lucene search
HistoryOct 18, 2010 - 5:00 p.m.
CVE-2009-5005
apache qpid
denial of service
invalid amqp data
cve-2009-5005
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.8 Medium
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.2%
The Cluster::deliveredEvent function in cluster/Cluster.cpp in Apache Qpid, as used in Red Hat Enterprise MRG before 1.3 and other products, allows remote attackers to cause a denial of service (daemon crash and cluster outage) via invalid AMQP data.
Affected configurations
Node
apacheqpidRange≤0.5
redhatenterprise_mrgRange≤1.2.2
ORredhatenterprise_mrgMatch1.0
ORredhatenterprise_mrgMatch1.0.1
ORredhatenterprise_mrgMatch1.0.2
ORredhatenterprise_mrgMatch1.0.3
ORredhatenterprise_mrgMatch1.1.1
ORredhatenterprise_mrgMatch1.1.2
ORredhatenterprise_mrgMatch1.2
References
Social References
More
Related
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:52:19
prion
prion
Code injection
2010-10-18 17:00:00
cvelist
cvelist
CVE-2009-5005
2010-10-18 16:00:00
nvd
nvd
CVE-2009-5005
2010-10-18 17:00:02
redhat
redhat
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.8 Medium
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.2%
Related for CVE-2009-5005