ID de Prueba:	1.3.6.1.4.1.25623.1.0.807971
Categoría:	Web application abuses
Título:	Apache ActiveMQ Clickjacking Vulnerability (May 2016)
Resumen:	Apache ActiveMQ is prone to a clickjacking vulnerability.
Descripción:	Summary: Apache ActiveMQ is prone to a clickjacking vulnerability. Vulnerability Insight: The flaw exists as the web-based administration console does not set an X-Frame-Options header in HTTP responses. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct clickjacking attacks via a crafted web page. Affected Software/OS: Apache ActiveMQ Version 5.x before 5.13.2. Solution: Upgrade to Apache ActiveMQ Version 5.13.2 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-0734 BugTraq ID: 84321 http://www.securityfocus.com/bid/84321 https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2@%3Ccommits.activemq.apache.org%3E http://www.openwall.com/lists/oss-security/2016/03/10/11 RedHat Security Advisories: RHSA-2016:1424 https://access.redhat.com/errata/RHSA-2016:1424 http://www.securitytracker.com/id/1035327
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.