CVE-2011-4905

N/A Unknown

Published: January 05, 2012 Modified: April 29, 2026

Description

Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor exhaustion and broker crash or hang) by sending many openwire failover:tcp:// connection requests.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://openwall.com/lists/oss-security/2011/12/25/2

Source: secalert@redhat.com

http://openwall.com/lists/oss-security/2011/12/25/6

Source: secalert@redhat.com

http://secunia.com/advisories/47112

Source: secalert@redhat.com

Vendor Advisory

http://svn.apache.org/viewvc?view=revision&revision=1209700

Source: secalert@redhat.com

http://svn.apache.org/viewvc?view=revision&revision=1211844

Source: secalert@redhat.com

http://www.securityfocus.com/bid/50904

Source: secalert@redhat.com

https://issues.apache.org/jira/browse/AMQ-3294

Source: secalert@redhat.com

Exploit

http://openwall.com/lists/oss-security/2011/12/25/2