The AMQP type decoder in Apache Qpid 0.20 and previous versions allows remote malicious users to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the client-properties map in a connection.start-ok message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache qpid 0.8 |
||
apache qpid 0.7 |
||
apache qpid 0.6 |
||
apache qpid 0.5 |
||
apache qpid 0.16 |
||
apache qpid 0.15 |
||
apache qpid 0.14 |
||
apache qpid 0.13 |
||
apache qpid |
||
apache qpid 0.18 |
||
apache qpid 0.11 |
||
apache qpid 0.9 |
||
apache qpid 0.19 |
||
apache qpid 0.17 |
||
apache qpid 0.12 |
||
apache qpid 0.10 |