ID de Prueba:	1.3.6.1.4.1.25623.1.0.105331
Categoría:	Web application abuses
Título:	Apache ActiveMQ Directory Traversal Vulnerability
Resumen:	Apache ActiveMQ is prone to a directory traversal vulnerability because it fails to; sufficiently sanitize user-supplied input.
Descripción:	Summary: Apache ActiveMQ is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Vulnerability Impact: A remote attacker could exploit this vulnerability using directory- traversal characters ('../') to create arbitrary files in the target directory and perform other attacks. Affected Software/OS: Apache ActiveMQ 5.x versions prior to 5.11.2 are vulnerable. Solution: Updates are available. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1830 1033315 http://www.securitytracker.com/id/1033315 76452 http://www.securityfocus.com/bid/76452 [activemq-commits] 20190327 svn commit: r1042639 - in /websites/production/activemq/content/activemq-website: ./ projects/artemis/download/ projects/classic/download/ projects/cms/download/ security-advisories.data/ https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3E http://activemq.apache.org/security-advisories.data/CVE-2015-1830-announcement.txt http://packetstormsecurity.com/files/156643/Apache-ActiveMQ-5.11.1-Directory-Traversal-Shell-Upload.html http://www.zerodayinitiative.com/advisories/ZDI-15-407 http://www.zerodayinitiative.com/advisories/ZDI-15-407/
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.