SecurityHome.eu Security vulnerability: Apache ActiveMQ 5.10.1 Denial Of Service

Home / vulnerabilities PDF

Apache ActiveMQ 5.10.1 Denial Of Service
Posted on 09 November 2015
Source : packetstormsecurity.org Link

CVE-2014-3576: Remote Unauthenticated Shutdown of Broker (DoS)

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Apache ActiveMQ 5.0.0 - 5.10.1

Description:
It is possible to shutdown an ActiveMQ broker remotely without authentication. The offending network packet is sent to the same port as a message consumer or producer would connect to. If the port is exposed,
the attack will be possible.

Mitigation:
Upgrade to Apache ActiveMQ 5.11.0

TOP

Malware :

Dridex
Shamoon 2
Hitler-Ransomware
Trojan.Win32.Vicepass.A
ButterflyBot.A

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20