Announcement Announcement Module
Collapse
No announcement yet.
Advisory - Denial of Service Vulnerability in IBM WebSphere MQ inetd Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Advisory - Denial of Service Vulnerability in IBM WebSphere MQ inetd

    Denial of Service Vulnerability in IBM WebSphere MQ inetd

    Severity Rating: Medium

    Systems Affected
    • WebSphere MQ 7.1.x (UNIX and IBM i)
    • WebSphere MQ 7.5.x (UNIX only)

    Overview
    A vulnerability has been reported in IBM WebSphere MQ which could be exploited by a remote attacker to cause denial of service conditions.

    Description
    The vulnerability exists in TCP/IP listener daemon of the queue manager.
    Successful exploitation of this vulnerability allows a remote attacker to fill the file systems with failure data capture (FDC) files or forcing the inetd process to enter an infinite loop exhausting all CPU resources leading to DOS conditions.

    Solution
    Install appropriate fix as mentioned by the vendor:-
    http://www-01.ibm.com/support/docvie...id=swg21670374

    Vendor Information
    IBM
    http://www-01.ibm.com/support/docvie...id=swg21670374

    References
    ISS X-FORCE
    http://xforce.iss.net/xforce/xfdb/91876

    Secunia
    http://secunia.com/advisories/58276/

    SecurityFocus
    http://www.securityfocus.com/bid/67207
Tag Cloud Tag Cloud Module
Collapse
Working...
X