Release date:
Updated on:
Affected Systems:
IBM WebSphere MQ 7.x
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2012-2199
IBM WebSphere MQ is used to provide message transmission services in enterprises.
When IBM WebSphere MQ 7.0.1, 7.1, and 7.5 (Solaris) handle address queue exceptions on the Solaris queue manager, an error occurs in the Server Message channel, which can be exploited to render service unavailable.
<* Source: vendor
Link: http://secunia.com/advisories/50752/
Http://www-01.ibm.com/support/docview.wss? Uid = swg21610285
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
IBM
---
For this reason, IBM has released a Security Bulletin (swg21610285) and corresponding patches:
Swg21610285: WebSphere MQ Security Vulnerability: potential denial of service attack on multiplexed server connection channels
Link: http://www-01.ibm.com/support/docview.wss? Uid = swg21610285