1
Candidate: CVE-2016-3088
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3088
5
http://activemq.apache.org/security-advisories.data/CVE-2016-3088-announcement.txt
7
The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows
8
remote attackers to upload and execute arbitrary files via an HTTP PUT
9
followed by an HTTP MOVE request.
12
tyhicks> Affects "Apache ActiveMQ 5.0.0 - 5.13.2"
15
Discovered-by: Simon Zuckerbraun and Andrea Micalizzi
19
upstream_activemq: released (5.13.3)
20
precise_activemq: ignored (reached end-of-life)
21
precise/esm_activemq: DNE (precise was needed)
22
trusty_activemq: needed
23
vivid/stable-phone-overlay_activemq: DNE
24
vivid/ubuntu-core_activemq: DNE
25
wily_activemq: ignored (reached end-of-life)
26
xenial_activemq: needed
27
yakkety_activemq: ignored (reached end-of-life)
28
zesty_activemq: ignored (reached end-of-life)
29
artful_activemq: needed
30
bionic_activemq: needed
31
devel_activemq: needed