Intrusion Prevention

ZeroMQ.libzmq.v2_decoder.Integer.Overflow

Description

This indicates an attack attempt to exploit an Integer Overflow vulnerability in ZeroMQ.
A remote attacker can exploit this vulnerability by sending a crafted ZMTP 2.0 message to the target server. Successful exploitation could result in the execution of arbitrary code under the security context of the application.

Affected Products

System Compromise: Remote attackers can gain control of vulnerable systems

Impact

ZeroMQ libzmq prior to 4.3.1

Recommended Actions

Refer to the vendor's advisory for updates:
https://github.com/zeromq/libzmq/releases/tag/v4.3.1

CVE References

CVE-2019-6250