It was found that the Apache ActiveMQ client prior to 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache activemq |
||
redhat jboss fuse 6.3 |
||
redhat jboss a-mq 6.3 |
||
redhat jboss a-mq 6.2.1 |