CVE-2016-3088: Apache ActiveMQ < 5.14.0 web shell upload

by do son · Published June 30, 2017 · Updated August 2, 2017

Apache ActiveMQ

Apache ActiveMQ ™ is the most popular and powerful open source messaging and Integration Patterns server.

Apache ActiveMQ is fast, supports many Cross Language Clients and Protocols, comes with easy to use Enterprise Integration Patterns and many advanced features while fully supporting JMS 1.1 and J2EE 1.4. Apache ActiveMQ is released under the Apache 2.0 License

CVE-2016-3088

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request.

CVE-2016-3088: Apache ActiveMQ < 5.14.0 web shell upload

Search

Brilliantly

Content & Links

CVE-2016-3088: Apache ActiveMQ < 5.14.0 web shell upload

Apache ActiveMQ

CVE-2016-3088

Metasploit module

Search

Brilliantly

Content & Links