Lucene search
RootSSV:60090HistoryMay 03, 2012 - 12:00 a.m.
Apache Qpid非法访问安全限制绕过漏洞
2012-05-0300:00:00
Root
www.seebug.org
9
0.007 Low
EPSS
Percentile
79.9%
BUGTRAQ ID: 53305
CVE ID: CVE-2011-3620
Apache Qpid(Open Source AMQP Messaging)是一个跨平台的企业通讯解决方案,实现了高级消息队列协议。
Apache Qpid 0.12在通过群集用户名连接群集时没有验证SASL证书的密码,可通过恶意的代理非法访问群集。
0
Apache Group Qpid 0.x
厂商补丁:
Apache Group
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
nessus
nessus
RHEL 5 : MRG (RHSA-2012:0529)
2014-07-22 00:00:00
RHEL 6 : Red Hat Enterprise MRG Messaging 2.1 (RHSA-2012:0528)
2014-07-22 00:00:00
veracode
veracode
Authorization Bypass
2019-01-15 08:50:58
redhat
redhat
ubuntucve
ubuntucve
CVE-2011-3620
2012-05-03 00:00:00
cve
cve
CVE-2011-3620
2012-05-03 23:55:01
prion
prion
Design/Logic Flaw
2012-05-03 23:55:00
cvelist
cvelist
CVE-2011-3620
2012-05-03 23:00:00
nvd
nvd
CVE-2011-3620
2012-05-03 23:55:01