Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2014-9494

Опубликовано: 20 янв. 2015
Источник: debian

Описание

RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
rabbitmq-serverfixed3.4.1-1package
rabbitmq-serverfixed3.3.5-1.1jessiepackage
rabbitmq-servernot-affectedwheezypackage
rabbitmq-servernot-affectedsqueezepackage

Примечания

  • http://hg.rabbitmq.com/rabbitmq-management/rev/c3c41177a11a

  • http://hg.rabbitmq.com/rabbitmq-management/rev/35e916df027d

  • http://www.rabbitmq.com/release-notes/README-3.4.0.txt

Связанные уязвимости

ubuntu логотип

CVE-2014-9494

ubuntu
около 11 лет назад

RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.

redhat логотип

CVE-2014-9494

redhat
больше 11 лет назад

RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.

nvd логотип

CVE-2014-9494

nvd
около 11 лет назад

RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.

github логотип

GHSA-rgxx-9mfj-x5rf

github
больше 3 лет назад

RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.