Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-2400.NASLHistoryOct 08, 2020 - 12:00 a.m.
Debian DLA-2400-1 : activemq security update
2020-10-0800:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
6.1 Medium
AI Score
Confidence
High
Apache ActiveMQ, a Java message broker, uses LocateRegistry.createRegistry() to create the JMX RMI registry and binds the server to the ‘jmxrmi’ entry. It is possible to connect to the registry without authentication and call the rebind method to rebind jmxrmi to something else. If an attacker creates another server to proxy the original, and bound that, he effectively becomes a man in the middle and is able to intercept the credentials when an user connects.
For Debian 9 stretch, this problem has been fixed in version 5.14.3-3+deb9u1.
We recommend that you upgrade your activemq packages.
For the detailed security status of activemq please refer to its security tracker page at:
https://security-tracker.debian.org/tracker/activemq
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-2400-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('compat.inc');
if (description)
{
script_id(141272);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/16");
script_cve_id("CVE-2020-13920");
script_name(english:"Debian DLA-2400-1 : activemq security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security update.");
script_set_attribute(attribute:"description", value:
"Apache ActiveMQ, a Java message broker, uses
LocateRegistry.createRegistry() to create the JMX RMI registry and
binds the server to the 'jmxrmi' entry. It is possible to connect to
the registry without authentication and call the rebind method to
rebind jmxrmi to something else. If an attacker creates another server
to proxy the original, and bound that, he effectively becomes a man in
the middle and is able to intercept the credentials when an user
connects.
For Debian 9 stretch, this problem has been fixed in version
5.14.3-3+deb9u1.
We recommend that you upgrade your activemq packages.
For the detailed security status of activemq please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/activemq
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://lists.debian.org/debian-lts-announce/2020/10/msg00013.html");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/stretch/activemq");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/activemq");
script_set_attribute(attribute:"solution", value:
"Upgrade the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-13920");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/09/10");
script_set_attribute(attribute:"patch_publication_date", value:"2020/10/07");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/10/08");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:activemq");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libactivemq-java");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libactivemq-java-doc");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"9.0", prefix:"activemq", reference:"5.14.3-3+deb9u1")) flag++;
if (deb_check(release:"9.0", prefix:"libactivemq-java", reference:"5.14.3-3+deb9u1")) flag++;
if (deb_check(release:"9.0", prefix:"libactivemq-java-doc", reference:"5.14.3-3+deb9u1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | activemq | p-cpe:/a:debian:debian_linux:activemq |
| debian | debian_linux | libactivemq-java | p-cpe:/a:debian:debian_linux:libactivemq-java |
| debian | debian_linux | libactivemq-java-doc | p-cpe:/a:debian:debian_linux:libactivemq-java-doc |
| debian | debian_linux | 9.0 | cpe:/o:debian:debian_linux:9.0 |
Related
prion
prion
Design/Logic Flaw
2020-09-10 19:15:00
osv
osv
CVE-2020-13920
2020-09-10 19:15:13
BIT-activemq-2020-13920
2024-03-06 10:51:35
activemq - security update
2020-10-07 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2400-1)
2020-10-08 00:00:00
Debian: Security Advisory (DLA-3657-1)
2023-11-21 00:00:00
nessus
nessus
FreeBSD : nexus2-oss -- Apache ActiveMQ JMX vulnerability (730e922f-20e7-11ec-a574-080027eedc6a)
2021-10-01 00:00:00
Debian DLA-3657-1 : activemq - LTS security update
2023-11-20 00:00:00
ibm
ibm
freebsd
freebsd
nexus2-oss -- Apache ActiveMQ JMX vulnerability
2020-12-28 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2020-09-11 05:01:42
ubuntucve
ubuntucve
CVE-2020-13920
2020-09-10 00:00:00
debian
debian
[SECURITY] [DLA 2400-1] activemq security update
2020-10-07 22:41:28
[SECURITY] [DLA 3657-1] activemq security update
2023-11-20 21:14:23
redhatcve
redhatcve
CVE-2020-13920
2020-09-17 17:30:08
debiancve
debiancve
CVE-2020-13920
2020-09-10 19:15:00
cve
cve
CVE-2020-13920
2020-09-10 19:15:00
github
github
Improper Authentication in Apache ActiveMQ
2022-02-09 22:15:00
redhat
redhat
(RHSA-2021:3207) Moderate: Red Hat Integration Camel Quarkus Tech-Preview 2 security update
2021-08-18 09:50:40
(RHSA-2021:3205) Moderate: Red Hat Integration Camel-K 1.4 release and security update
2021-08-18 09:09:40
(RHSA-2021:3140) Moderate: Red Hat Fuse 7.9.0 release and security update
2021-08-11 18:18:10
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - October 2020
2020-10-20 00:00:00