Lucene search
K

795 matches found

OSV
OSV
added 2012/01/05 4:55 p.m.11 views

CVE-2011-4905

Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service file-descriptor exhaustion and broker crash or hang by sending many openwire failover:tcp:// connection requests...

6.5AI score
Exploits0References7
Cvelist
Cvelist
added 2012/01/05 4:0 p.m.29 views

CVE-2011-4905

Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service file-descriptor exhaustion and broker crash or hang by sending many openwire failover:tcp:// connection requests...

8.3AI score0.08984EPSS
Exploits1References7
EUVD
EUVD
added 2012/01/05 4:0 p.m.1 views

EUVD-2022-3455

Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service file-descriptor exhaustion and broker crash or hang by sending many openwire failover:tcp:// connection requests...

5CVSS7.5AI score0.08984EPSS
Exploits1References13
CVE
CVE
added 2012/01/05 4:0 p.m.122 views

CVE-2011-4905

CVE-2011-4905 : Apache ActiveMQ is vulnerable to denial of service via the failover path. Specifically, ActiveMQ versions before 5.6.0 can exhaust file descriptors and trigger broker crashes or hangs when remote attackers send many openwire failover:tcp:// connection requests. Remediation in the ...

5CVSS8.1AI score0.08984EPSS
Exploits1References7Affected Software1
seebug.org
seebug.org
added 2011/12/07 12:0 a.m.16 views

Apache ActiveMQ故障转移机制远程拒绝服务漏洞

BUGTRAQ ID: 50904 Apache ActiveMQ是流行的消息传输和集成模式提供程序。 Apache ActiveMQ实现上存在漏洞,在处理openwire连接请求时,failover机制在实现上存在问题,可被利用触发异常并造成代理服务崩溃 0 Apache Group ActiveMQ 5.x 厂商补丁: Apache Group ------------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://httpd.apache.org/...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2010/04/30 12:0 a.m.51 views

Apache ActiveMQ XSS Vulnerability

Vulnerability Info: 26/04/2010 Issue Discovered 26/04/2010 Vendor Notified 27/04/2010 Vendor Conformed Class: Cross-Site Scripting Input validation Severity: Medium Overview: --------- Apache ActiveMQ is prone to cross-site scripting vulnerability. Technical Description: ---------------------- Th...

1.3AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/30 12:0 a.m.21 views

Apache ActiveMQ Cross Site Scripting

Vulnerability Info: 26/04/2010 Issue Discovered 26/04/2010 Vendor Notified 27/04/2010 Vendor Conformed Class: Cross-Site Scripting Input validation Severity: Medium Overview: --------- Apache ActiveMQ is prone to cross-site scripting vulnerability. Technical Description: ---------------------- Th...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2010/04/30 12:0 a.m.13 views

Apache ActiveMQ 'admin/queueBrowse' Cross Site Scripting Vulnerability

Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.6AI score
Exploits0References2
0day.today
0day.today
added 2010/04/30 12:0 a.m.20 views

Apache ActiveMQ version 5.3.x XSS Vulnerabilities

Exploit for php platform in category web applications ================================================= Apache ActiveMQ version 5.3.x XSS Vulnerabilities ================================================= Severity: Medium Overview: --------- Apache ActiveMQ is prone to cross-site scripting...

7.1AI score
Exploits0
Prion
Prion
added 2010/04/28 10:30 p.m.17 views

Design/Logic Flaw

The Jetty ResourceHandler in Apache ActiveMQ 5.x before 5.3.2 and 5.4.x before 5.4.0 allows remote attackers to read JSP source code via a // slash slash initial substring in a URI for 1 admin/index.jsp, 2 admin/queues.jsp, or 3 admin/topics.jsp...

5CVSS7.3AI score0.78018EPSS
Exploits6References7Affected Software1
NVD
NVD
added 2010/04/28 10:30 p.m.42 views

CVE-2010-1587

The Jetty ResourceHandler in Apache ActiveMQ 5.x before 5.3.2 and 5.4.x before 5.4.0 allows remote attackers to read JSP source code via a // slash slash initial substring in a URI for 1 admin/index.jsp, 2 admin/queues.jsp, or 3 admin/topics.jsp...

5CVSS6.7AI score0.78018EPSS
Exploits6References7
Cvelist
Cvelist
added 2010/04/28 10:0 p.m.45 views

CVE-2010-1587

The Jetty ResourceHandler in Apache ActiveMQ 5.x before 5.3.2 and 5.4.x before 5.4.0 allows remote attackers to read JSP source code via a // slash slash initial substring in a URI for 1 admin/index.jsp, 2 admin/queues.jsp, or 3 admin/topics.jsp...

6.6AI score0.78018EPSS
Exploits6References7
CVE
CVE
added 2010/04/28 10:0 p.m.97 views

CVE-2010-1587

The CVE-2010-1587 issue affects Apache ActiveMQ with the Jetty ResourceHandler. It enables a remote attacker to disclose JSP source code by sending a URI beginning with // that targets (admin/index.jsp, admin/queues.jsp, or admin/topics.jsp). Affected products/versions are ActiveMQ 5.x before 5.3...

5CVSS6.8AI score0.78018EPSS
Exploits6References7Affected Software1
exploitpack
exploitpack
added 2010/04/28 12:0 a.m.14 views

Apache ActiveMQ 5.3 - adminqueueBrowse Cross-Site Scripting

Apache ActiveMQ 5.3 - adminqueueBrowse Cross-Site Scripting source: https://www.securityfocus.com/bid/39771/info Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2010/04/28 12:0 a.m.21 views

Apache ActiveMQ 5.3 - 'admin/queueBrowse' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39771/info Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2010/04/26 12:0 a.m.93 views

Apache ActiveMQ is prone to source code disclosure vulnerability.

Apache ActiveMQ Source Code Disclosure Vulnerability SecPod Technologies www.secpod.com Author Veerendra G.G SecPod ID: 1002 04/18/2010 Issue Discovered 04/20/2010 Vendor Notified 04/21/2010 Fix Available Class: Source code disclosure Severity: Medium Overview: --------- Apache ActiveMQ is prone ...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2010/04/26 12:0 a.m.18 views

Apache ActiveMQ URL请求源码泄露漏洞

BUGTRAQ ID: 39636 Apache ActiveMQ是流行的消息传输和集成模式提供程序。 Apache ActiveMQ中存在输入验证错误,用户在提交给admin/index.jsp、admin/queues.jsp、admin /topics.jsp等管理页面的URL请求后附加“//”就可以读取JSP页面源码。 0 Apache Group ActiveMQ 5.3.1 临时解决方法: 1. 到$ACTIVEMQHOME/webapps目录下 2. 创建名为static的新目录 - mkdir static 3. 将index.html文件移动到该目录下 - mv...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/04/24 12:0 a.m.95 views

Apache ActiveMQ Double Slash Request Source Code Disclosure

The version of Apache ActiveMQ hosted on the remote web server is affected by a source code disclosure vulnerability in the Jetty ResourceHandler when handling requests to a JSP file with additional leading slashes. A remote attacker can exploit this to disclose the source code of pages, which ma...

5CVSS5.6AI score0.78018EPSS
Exploits6References3
Packet Storm
Packet Storm
added 2010/04/23 12:0 a.m.16 views

Apache ActiveMQ Source Code Disclosure

Apache ActiveMQ Source Code Disclosure Vulnerability SecPod Technologies www.secpod.com Author Veerendra G.G SecPod ID: 1002 04/18/2010 Issue Discovered 04/20/2010 Vendor Notified 04/21/2010 Fix Available Class: Source code disclosure Severity: Medium Overview: --------- Apache ActiveMQ is prone ...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2010/04/23 12:0 a.m.32 views

Apache ActiveMQ Source Code Information Disclosure Vulnerability

Apache ActiveMQ is prone to source code information disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS6.2AI score0.78018EPSS
Exploits6References3
Rows per page
Query Builder