CVE-2011-3620
First published: Tue Oct 18 2011(Updated: )
A flaw was found in qpid where it would accept any password or SASL mechanism, provided the remote user knew a valid cluster username. This would give a malicious remote attacker unauthorized access to the cluster where they would be able to receive replicated messages to the cluster, be able to send any cluster message, mark any present message as consumed, run any job on the cluster, and also view/modify/create other users' jobs. Only cluster messages and internal qpid/MRG configuration is accessible to the remote attacker.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache Qpid | =0.12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://reviews.apache.org/r/2988/
- https://issues.apache.org/jira/browse/QPID-3652
- https://bugzilla.redhat.com/show_bug.cgi?id=747078
- http://secunia.com/advisories/49000
- http://www.securitytracker.com/id?1026990
- https://rhn.redhat.com/errata/RHSA-2012-0529.html
- https://rhn.redhat.com/errata/RHSA-2012-0528.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=817644
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-3620
- agent/tags
- agent/trending
- vendor/apache
- canonical/apache qpid
- version/apache qpid/0.12