Vulnerability CVE-2010-1244 - CERT Civis.Net

Vulnerability Name:

CVE-2010-1244 (CCN-57398)

Assigned:

2010-03-03

Published:

2010-03-03

Updated:

2017-08-17

Summary:

Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests that create queues via the JMSDestination parameter in a queue action.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: Apache Software Foundation Web site
Apache ActiveMQ 5.3 is primarily a maintenance release which resolves 98 issues

Source: CONFIRM
Type: Patch
http://activemq.apache.org/activemq-531-release.html

Source: MITRE
Type: CNA
CVE-2010-1244

Source: CCN
Type: SA39223
Apache ActiveMQ Script Insertion and Cross-Site Request Forgery

Source: SECUNIA
Type: Vendor Advisory
39223

Source: CCN
Type: OSVDB ID: 63368
Apache ActiveMQ createDestination.action JMSDestination Parameter CSRF

Source: CCN
Type: Rajat Swarup
Apache ActiveMQ Persistent Cross-Site Scripting (XSS) Vulnerability

Source: CCN
Type: BID-39119
Apache ActiveMQ 'createDestination.action' HTML Injection Vulnerability

Source: XF
Type: UNKNOWN
activemq-web-console-csrf(57398)

Source: XF
Type: UNKNOWN
activemq-web-console-csrf(57398)

Source: CONFIRM
Type: Exploit
https://issues.apache.org/activemq/browse/AMQ-2613

Source: CONFIRM
Type: Exploit
https://issues.apache.org/activemq/browse/AMQ-2625

Vulnerable Configuration:

Configuration 1:

cpe:/a:apache:activemq:1.1:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:1.2:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:1.3:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:1.4:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:1.5:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:2.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:2.1:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:3.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:3.1:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:3.2:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:3.2.1:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:3.2.2:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.0:m4:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.0:rc2:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.0.1:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.0.2:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.1.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:4.1.1:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:5.0.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:5.1.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:5.2.0:*:*:*:*:*:*:*

OR cpe:/a:apache:activemq:*:*:*:*:*:*:*:* (Version <= 5.3.0)

Configuration CCN 1:

cpe:/a:apache:activemq:5.2.0:*:*:*:*:*:*:*

Denotes that component is vulnerable