What is the severity of CVE-2012-5953?

CVE-2012-5953 has a critical severity rating as it can lead to denial of service.

How do I fix CVE-2012-5953?

To fix CVE-2012-5953, apply the latest security update for your version of IBM WebSphere Message Broker.

What software versions are affected by CVE-2012-5953?

CVE-2012-5953 affects IBM WebSphere Message Broker versions 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2.

What is the impact of exploiting CVE-2012-5953?

Exploiting CVE-2012-5953 allows remote attackers to cause an infinite loop resulting in denial of service.

Is there a workaround for CVE-2012-5953?

A possible workaround for CVE-2012-5953 is to disable the Parse Query Strings option on the HTTPInput node.

Vulnerability/
CVE-2012-5953

medium

4.3

CWE

119

20/2/2013

6/8/2024

CVE-2012-5953: Buffer Overflow

First published: Wed Feb 20 2013(Updated: )

IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2, when the Parse Query Strings option is enabled on an HTTPInput node, allows remote attackers to cause a denial of service (infinite loop) via a crafted query string.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM WebSphere Message Broker	=6.1
IBM WebSphere Message Broker	=6.1.0.1
IBM WebSphere Message Broker	=6.1.0.2
IBM WebSphere Message Broker	=6.1.0.3
IBM WebSphere Message Broker	=6.1.0.4
IBM WebSphere Message Broker	=6.1.0.5
IBM WebSphere Message Broker	=6.1.0.6
IBM WebSphere Message Broker	=6.1.0.7
IBM WebSphere Message Broker	=6.1.0.8
IBM WebSphere Message Broker	=6.1.0.9
IBM WebSphere Message Broker	=6.1.0.10
IBM WebSphere Message Broker	=6.1.0.11
IBM WebSphere Message Broker	=7.0.
IBM WebSphere Message Broker	=7.0.0.1
IBM WebSphere Message Broker	=7.0.0.2
IBM WebSphere Message Broker	=7.0.0.3
IBM WebSphere Message Broker	=7.0.0.4
IBM WebSphere Message Broker	=7.0.0.5
IBM WebSphere Message Broker	=8.0
IBM WebSphere Message Broker	=8.0.0.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-5953?
CVE-2012-5953 has a critical severity rating as it can lead to denial of service.
How do I fix CVE-2012-5953?
To fix CVE-2012-5953, apply the latest security update for your version of IBM WebSphere Message Broker.
What software versions are affected by CVE-2012-5953?
CVE-2012-5953 affects IBM WebSphere Message Broker versions 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2.
What is the impact of exploiting CVE-2012-5953?
Exploiting CVE-2012-5953 allows remote attackers to cause an infinite loop resulting in denial of service.
Is there a workaround for CVE-2012-5953?
A possible workaround for CVE-2012-5953 is to disable the Parse Query Strings option on the HTTPInput node.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/tags
agent/references
agent/weakness
agent/author
agent/event
agent/description
agent/first-publish-date
agent/source
vendor/ibm
canonical/ibm websphere message broker
version/ibm websphere message broker/6.1
version/ibm websphere message broker/6.1.0.1
version/ibm websphere message broker/6.1.0.2
version/ibm websphere message broker/6.1.0.3
version/ibm websphere message broker/6.1.0.4
version/ibm websphere message broker/6.1.0.5
version/ibm websphere message broker/6.1.0.6
version/ibm websphere message broker/6.1.0.7
version/ibm websphere message broker/6.1.0.8
version/ibm websphere message broker/6.1.0.9
version/ibm websphere message broker/6.1.0.10
version/ibm websphere message broker/6.1.0.11
version/ibm websphere message broker/7.0.
version/ibm websphere message broker/7.0.0.1
version/ibm websphere message broker/7.0.0.2
version/ibm websphere message broker/7.0.0.3
version/ibm websphere message broker/7.0.0.4
version/ibm websphere message broker/7.0.0.5
version/ibm websphere message broker/8.0
version/ibm websphere message broker/8.0.0.1

Frequently Asked Questions

What is the severity of CVE-2012-5953?
CVE-2012-5953 has a critical severity rating as it can lead to denial of service.
How do I fix CVE-2012-5953?
To fix CVE-2012-5953, apply the latest security update for your version of IBM WebSphere Message Broker.
What software versions are affected by CVE-2012-5953?
CVE-2012-5953 affects IBM WebSphere Message Broker versions 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2.
What is the impact of exploiting CVE-2012-5953?
Exploiting CVE-2012-5953 allows remote attackers to cause an infinite loop resulting in denial of service.
Is there a workaround for CVE-2012-5953?
A possible workaround for CVE-2012-5953 is to disable the Parse Query Strings option on the HTTPInput node.

CVE-2012-5953: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-5953?

How do I fix CVE-2012-5953?

What software versions are affected by CVE-2012-5953?

What is the impact of exploiting CVE-2012-5953?

Is there a workaround for CVE-2012-5953?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2012-5953?

How do I fix CVE-2012-5953?

What software versions are affected by CVE-2012-5953?

What is the impact of exploiting CVE-2012-5953?

Is there a workaround for CVE-2012-5953?