Logstash CVE-2015-5378 Man in the Middle Security Bypass Vulnerability

Bugtraq ID: 76015
Class: Design Error
CVE: CVE-2015-5378
Remote: Yes
Local: No
Published: Jul 21 2015 12:00AM
Updated: Jul 21 2015 12:00AM
Credit: Accenture Security Team
Vulnerable: Elasticsearch Logstash 1.5.2
Elasticsearch Logstash 1.5.0
Elasticsearch Logstash 1.4.3
Elasticsearch Logstash 1.4.2
Elasticsearch Logstash 1.4.1
Elasticsearch Logstash 1.4.0
Elasticsearch Logstash 1.3.3
Elasticsearch Logstash 1.3.2
Elasticsearch Logstash 1.3.1
Elasticsearch Logstash 1.3.0
Elasticsearch Logstash 1.2.2
Elasticsearch Logstash 1.2.1
Elasticsearch Logstash 1.1.9
Elasticsearch Logstash 1.1.8
Elasticsearch Logstash 1.1.7
Elasticsearch Logstash 1.1.6
Elasticsearch Logstash 1.1.5
Elasticsearch Logstash 1.1.4
Elasticsearch Logstash 1.1.3
Elasticsearch Logstash 1.1.2
Elasticsearch Logstash 1.1.13
Elasticsearch Logstash 1.1.12
Elasticsearch Logstash 1.1.11
Elasticsearch Logstash 1.1.10
Elasticsearch Logstash 1.1.1
Elasticsearch Logstash 1.1.0
Elasticsearch Logstash 1.0.17
Elasticsearch Logstash 1.0.16
Elasticsearch Logstash 1.0.15
Elasticsearch Logstash 1.0.14
Not Vulnerable: Elasticsearch Logstash 1.5.3
Elasticsearch Logstash 1.4.4


 

Privacy Statement
Copyright 2010, SecurityFocus