CVE-2014-4771

Name of the Vulnerable Software and Affected Versions IBM WebSphere MQ versions 7.0.1 through 7.0.1.12 IBM WebSphere MQ versions 7.1 through 7.1.0.5 IBM WebSphere MQ versions 7.5 through 7.5.0.4 IBM WebSphere MQ versions 8.0.0.0 through 8.0.0.0

Description The issue allows remote authenticated users to cause a denial of service by leveraging PCF query privileges for a crafted query, leading to queue-slot exhaustion.

Recommendations For IBM WebSphere MQ versions 7.0.1 through 7.0.1.12, update to version 7.0.1.13 or later. For IBM WebSphere MQ versions 7.1 through 7.1.0.5, update to version 7.1.0.6 or later. For IBM WebSphere MQ versions 7.5 through 7.5.0.4, update to version 7.5.0.5 or later. For IBM WebSphere MQ versions 8.0.0.0 through 8.0.0.0, update to version 8.0.0.1 or later.