2021-11-05 19:12:00 +00:00
id : CVE-2016-3088
info :
name : ActiveMQ Arbitrary File Write Vulnerability (CVE-2016-3088)
author : fq_hsu
2021-11-06 12:47:58 +00:00
severity : critical
2021-11-05 19:12:00 +00:00
description : The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request.
reference :
- https://www.exploit-db.com/exploits/40857
- http://activemq.apache.org/security-advisories.data/CVE-2016-3088-announcement.txt
- https://nvd.nist.gov/vuln/detail/CVE-2016-3088
tags : fileupload,cve,cve2016,apache,activemq
2021-11-06 12:47:58 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score : 9.80
cve-id : CVE-2016-3088
cwe-id : CWE-20
2021-11-05 19:12:00 +00:00
requests :
- raw :
- |
PUT /fileserver/test.txt HTTP/1.1
Host : {{Hostname}}
{{randstr}}
- raw :
- |
GET /fileserver/test.txt HTTP/1.1
Host : {{Hostname}}
req-condition : true
matchers :
- type : dsl
dsl :
2021-11-06 10:43:58 +00:00
- "status_code_1==204"
- "status_code_2==200"
- "contains((body_2), '{{randstr}}')"
2021-11-05 19:12:00 +00:00
condition : and