Skip to content

Commit

Permalink
Add CVE-2016-3088
Browse files Browse the repository at this point in the history
  • Loading branch information
@TardC
TardC committed Apr 15, 2020
1 parent d7ebd50 commit 2a7730f
Show file tree
Hide file tree
Showing 2 changed files with 11 additions and 0 deletions.
Binary file added ActiveMQ/CVE-2016-3088/CVE-2016-3088.gif
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
11 changes: 11 additions & 0 deletions ActiveMQ/CVE-2016-3088/README.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
# CVE-2016-3088 ActiveMQ Arbitrary File Write Vulnerability

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request. Therefore, we can write a file and then move it to any directory, thereby causing arbitrary file writing vulnerability.

Affected version: Apache ActiveMQ 5.x - 5.13.x

FOFA query rule: app="Apache-ActiveMQ"

# Demo

![](CVE-2016-3088.gif)

0 comments on commit 2a7730f

Please sign in to comment.