sys/ssl/SslSocket.cpp in qpidd in Apache Qpid, as used in Red Hat Enterprise MRG before 1.2.2 and other products, when SSL is enabled, allows remote attackers to cause a denial of service (daemon outage) by connecting to the SSL port but not participating in an SSL handshake.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Qpid | Apache | 0.5 (including) | 0.5 (including) |
Qpid | Apache | 0.6 (including) | 0.6 (including) |