CVE-2014-3576

The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.
Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:oracle:business_intelligence_publisher:12.2.1.0.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:oracle:fusion_middleware:8.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:12.1.3.0.0:*:*:*:*:*:*:*

History

21 Nov 2024, 02:08

Type Values Removed Values Added
References () http://activemq.2283324.n4.nabble.com/About-CVE-2014-3576-tp4699628.html - () http://activemq.2283324.n4.nabble.com/About-CVE-2014-3576-tp4699628.html -
References () http://packetstormsecurity.com/files/134274/Apache-ActiveMQ-5.10.1-Denial-Of-Service.html - () http://packetstormsecurity.com/files/134274/Apache-ActiveMQ-5.10.1-Denial-Of-Service.html -
References () http://www.debian.org/security/2015/dsa-3330 - () http://www.debian.org/security/2015/dsa-3330 -
References () http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html - () http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html -
References () http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html - () http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html -
References () http://www.securityfocus.com/archive/1/536862/100/0/threaded - () http://www.securityfocus.com/archive/1/536862/100/0/threaded -
References () http://www.securityfocus.com/bid/76272 - () http://www.securityfocus.com/bid/76272 -
References () http://www.securitytracker.com/id/1033898 - () http://www.securitytracker.com/id/1033898 -
References () https://github.com/apache/activemq/commit/00921f2 - Patch () https://github.com/apache/activemq/commit/00921f2 - Patch
References () https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3E - () https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3E -

07 Nov 2023, 02:20

Type Values Removed Values Added
References
  • {'url': 'https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2@%3Ccommits.activemq.apache.org%3E', 'name': '[activemq-commits] 20190327 svn commit: r1042639 - in /websites/production/activemq/content/activemq-website: ./ projects/artemis/download/ projects/classic/download/ projects/cms/download/ security-advisories.data/', 'tags': [], 'refsource': 'MLIST'}
  • () https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3E -

Information

Published : 2015-08-14 18:59

Updated : 2024-11-21 02:08


NVD link : CVE-2014-3576

Mitre link : CVE-2014-3576

CVE.ORG link : CVE-2014-3576


JSON object : View

Products Affected

oracle

  • business_intelligence_publisher
  • fusion_middleware

apache

  • activemq
CWE
CWE-264

Permissions, Privileges, and Access Controls