CVE-2012-4460

Name of the Vulnerable Software and Affected Versions Apache Qpid versions 0.20 and earlier

Description The issue affects the serializing/deserializing functions in the qpid::framing::Buffer class, allowing remote attackers to cause a denial of service through unspecified vectors, potentially leading to an assertion failure and daemon exit. Additionally, this issue could trigger an out-of-bounds read, although it may not always result in a crash.

Recommendations For Apache Qpid versions 0.20 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.