← back
CVE-2015-8786

CVE-2015-8786

EPSS 3.5%
The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (resource consumption) via the (1) lengths_age or (2) lengths_incr parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rhn.redhat.com/errata/RHSA-2017-0226.htmlhttp://rhn.redhat.com/errata/RHSA-2017-0530.htmlhttp://rhn.redhat.com/errata/RHSA-2017-0531.htmlhttp://rhn.redhat.com/errata/RHSA-2017-0532.htmlhttp://rhn.redhat.com/errata/RHSA-2017-0533.htmlhttps://github.com/rabbitmq/rabbitmq-management/issues/97https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_1http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlhttp://www.securityfocus.com/bid/91508