Arbitrary Code Execution Vulnerability in Qpid Server on Red Hat Satellite 6

Arbitrary Code Execution Vulnerability in Qpid Server on Red Hat Satellite 6

CVE-2015-5164 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The Qpid server on Red Hat Satellite 6 does not properly restrict message types, which allows remote authenticated users with administrative access on a managed content host to execute arbitrary code via a crafted message, related to a pickle processing problem in pulp.

Learn more about our Cis Benchmark Audit For Server Software.