Summary: 60East has become aware of a security vulnerability in AMPS. This vulnerability occurs
when WRITE entitlement filters are not correctly applied to sow_delete commands in cases where the command used a hash index or the primary key field(s). A user could potentially delete messages that should have been disallowed by the filter. This issue applies to sow_delete commands only. Topic entitlements are not affected, nor are other commands. This bulletin applies only to entitlement filters.
Recommended Action: If your installation uses entitlement filters to enforce content restrictions
to queues or topics in the State-of-the-World, 60East recommends immediately upgrading to
5.2.3.39, and 5.2.0.241.
Affected Versions:
AMPS versions before AMPS 5.2.2.39, and 5.2.0.241.
Security Bulletin: 5 (AMPS 2018-12-06)
Follow
Have more questions? Submit a request
Comments