4.3

CVE-2010-3083

sys/ssl/SslSocket.cpp in qpidd in Apache Qpid, as used in Red Hat Enterprise MRG before 1.2.2 and other products, when SSL is enabled, allows remote attackers to cause a denial of service (daemon outage) by connecting to the SSL port but not participating in an SSL handshake.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApacheQpid Version0.5
ApacheQpid Version0.6
RedhatEnterprise Mrg Version <= 1.2
RedhatEnterprise Mrg Version1.0
RedhatEnterprise Mrg Version1.0.1
RedhatEnterprise Mrg Version1.0.2
RedhatEnterprise Mrg Version1.0.3
RedhatEnterprise Mrg Version1.1.1
RedhatEnterprise Mrg Version1.1.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.79% 0.81
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P