Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-4771

Overview

Vulnerability Score 3.5 3.5
CVE Id CVE-2014-4771
Last Modified 13 Feb 2015 03:43:40
Published 12 Feb 2015 09:59:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2014-4771

Summary

IBM WebSphere MQ 7.0.1 before 7.0.1.13, 7.1 before 7.1.0.6, 7.5 before 7.5.0.5, and 8 before 8.0.0.1 allows remote authenticated users to cause a denial of service (queue-slot exhaustion) by leveraging PCF query privileges for a crafted query.

Vulnerable Systems

Application

  • Ibm Websphere Mq 7.0.1.0

  • Ibm Websphere Mq 7.0.1.1

  • Ibm Websphere Mq 7.0.1.10

  • Ibm Websphere Mq 7.0.1.11

  • Ibm Websphere Mq 7.0.1.12

  • Ibm Websphere Mq 7.0.1.2

  • Ibm Websphere Mq 7.0.1.3

  • Ibm Websphere Mq 7.0.1.4

  • Ibm Websphere Mq 7.0.1.5

  • Ibm Websphere Mq 7.0.1.6

  • Ibm Websphere Mq 7.0.1.7

  • Ibm Websphere Mq 7.0.1.8

  • Ibm Websphere Mq 7.0.1.9

  • Ibm Websphere Mq 7.1

  • Ibm Websphere Mq 7.1.0.1

  • Ibm Websphere Mq 7.1.0.2

  • Ibm Websphere Mq 7.1.0.3

  • Ibm Websphere Mq 7.1.0.4

  • Ibm Websphere Mq 7.1.0.5

  • Ibm Websphere Mq 7.5

  • Ibm Websphere Mq 7.5.0.1

  • Ibm Websphere Mq 7.5.0.2

  • Ibm Websphere Mq 7.5.0.3

  • Ibm Websphere Mq 7.5.0.4

  • Ibm Websphere Mq 8.0.0.0


References

XF - ibm-webspheremq-cve20144771-dos(94842)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21696120

AIXAPAR - IV69190


Last Updated: 27 May 2016 11:07:47