CVE-2015-8786

rabbitmq-server: DoS via lengths_age or lengths_incr parameter in the management plugin

Severity Score

6.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (resource consumption) via the (1) lengths_age or (2) lengths_incr parameter.

El plugin Management en RabbitMQ en versiones anteriores a 3.6.1 permite a usuarios remotos autenticados con ciertos privilegios provocar una denegación de servicio (consumo de recursos) a través del parámetro (1) lengths_age o (2) lengths_incr.

A resource-consumption flaw was found in RabbitMQ Server, where the lengths_age or lengths_incr parameters were not validated in the management plugin. Remote, authenticated users with certain privileges could exploit this flaw to cause a denial of service by passing values which were too large.

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Complete

Attack Vector

Network

Attack Complexity

Medium

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2016-01-25 CVE Reserved
2016-12-09 CVE Published
2024-08-06 CVE Updated
2024-10-01 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-399: Resource Management Errors
CWE-400: Uncontrolled Resource Consumption

CAPEC

References (11)

URL	Tag	Source
http://www.securityfocus.com/bid/91508	Third Party Advisory

URL	Date	SRC

URL	Date	SRC
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html	2018-01-05
https://github.com/rabbitmq/rabbitmq-management/issues/97	2018-01-05
https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_1	2018-01-05

URL	Date	SRC
http://rhn.redhat.com/errata/RHSA-2017-0226.html	2018-01-05
http://rhn.redhat.com/errata/RHSA-2017-0530.html	2018-01-05
http://rhn.redhat.com/errata/RHSA-2017-0531.html	2018-01-05
http://rhn.redhat.com/errata/RHSA-2017-0532.html	2018-01-05
http://rhn.redhat.com/errata/RHSA-2017-0533.html	2018-01-05
https://access.redhat.com/security/cve/CVE-2015-8786	2017-03-15
https://bugzilla.redhat.com/show_bug.cgi?id=1404150	2017-03-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Oracle Search vendor "Oracle"		Solaris Search vendor "Oracle" for product "Solaris"				11.3 Search vendor "Oracle" for product "Solaris" and version "11.3"		-		Affected
Pivotal Software Search vendor "Pivotal Software"		Rabbitmq Search vendor "Pivotal Software" for product "Rabbitmq"				3.6.0 Search vendor "Pivotal Software" for product "Rabbitmq" and version "3.6.0"		-		Affected