Apache ActiveMQ LDAP Authentication Bypass Vulnerability (CVE-2014-3612)
Release date:
Updated on:
Affected Systems:
Apache Group ActiveMQ Apollo
Description:
Bugtraq id: 72513
CVE (CAN) ID: CVE-2014-3612
Apache ActiveMQ is a popular message transmission and integration mode provider.
Apache ActiveMQ has an Authentication Bypass Vulnerability. Attackers can exploit this vulnerability to bypass the authentication mechanism and perform unauthorized operations.
<* Source: Georgi gesev
Arun Babu Neelicattu
*>
Suggestion:
Vendor patch:
Apache Group
------------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://activemq.apache.org/apollo/
ActiveMQ installation in Linux
ACTIVEMQ server in Ubuntu
Spring + JMS + ActiveMQ + Tomcat Implement Message Service
Set ActiveMQ port and WEB port in Linux
This article permanently updates the link address: