← voltar
CVE-2010-1244

CVE-2010-1244

EPSS 1.1%
Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests that create queues via the JMSDestination parameter in a queue action.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://activemq.apache.org/activemq-531-release.htmlhttp://secunia.com/advisories/39223https://exchange.xforce.ibmcloud.com/vulnerabilities/57398https://issues.apache.org/activemq/browse/AMQ-2613https://issues.apache.org/activemq/browse/AMQ-2625