CVE-2015-7559 - DoS in client via shutdown command | |
Severity: Low | |
Vendor: | |
The Apache Software Foundation | |
Versions Affected: | |
Apache ActiveMQ 5.0.0 - 5.14.4 | |
Description: | |
It was found that Apache ActiveMQ client exposed a remote shutdown command in the ActiveMQConnection class. An attacker could use this flaw to achieve denial of service on a client. | |
Mitigation: | |
Upgrade to Apache ActiveMQ 5.14.5. | |
Credit: | |
Thanks to Chess Hazlett for reporting this vulnerability |