Intrusion Prevention

Apache.Qpid.Session.gap.DoS

Description

This indicates an attack attempt against a Denial of Service vulnerability in Apache Qpid.
The vulnerability is caused by an error when the vulnerable software handles a crafted request packet. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.

Affected Products

Apache Software Foundation QPID prior to 0.30

Impact

Denial of Service: Remote attacker can crash vulnerable systems.

Recommended Actions

Apply the latest update from the vendor
http://seclists.org/bugtraq/2015/Jan/61

CVE References

CVE-2015-0224 CVE-2015-0203