Apache Qpid 0.17 and earlier does not properly restrict incoming client connections, which allows remote attackers to cause a denial of service (file descriptor consumption) via a large number of incomplete connections.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Qpid | Apache | 0.14 | 0.14 |
Qpid | Apache | 0.7 | 0.7 |
Qpid | Apache | 0.10 | 0.10 |
Qpid | Apache | 0.9 | 0.9 |
Qpid | Apache | 0.6 | 0.6 |
Qpid | Apache | 0.12 | 0.12 |
Qpid | Apache | 0.16 | 0.16 |
Qpid | Apache | * | 0.17 |
Qpid | Apache | 0.8 | 0.8 |