Lucene search
Ubuntu.comUB:CVE-2015-6524HistoryAug 24, 2015 - 12:00 a.m.
CVE-2015-6524
2015-08-2400:00:00
ubuntu.com
ubuntu.com
13
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.009
Percentile
83.1%
The LDAPLoginModule implementation in the Java Authentication and
Authorization Service (JAAS) in Apache ActiveMQ 5.x before 5.10.1 allows
wildcard operators in usernames, which allows remote attackers to obtain
credentials via a brute force attack. NOTE: this identifier was SPLIT from
CVE-2014-3612 per ADT2 due to different vulnerability types.
Notes
| Author | Note |
|---|---|
| mdeslaur | fixed with CVE-2014-3612 |
Related
ubuntucve
ubuntucve
CVE-2014-3612
2015-08-24 00:00:00
github
github
Improper Input Validation in Apache ActiveMQ
2022-05-17 03:22:06
Improper Authentication in Apache WSS4J
2022-05-14 01:14:52
debiancve
debiancve
CVE-2015-6524
2015-08-24 14:59:13
CVE-2014-3612
2015-08-24 14:59:00
cvelist
cvelist
CVE-2015-6524
2015-08-24 14:00:00
CVE-2014-3612
2015-08-24 14:00:00
osv
osv
Improper Authentication in Apache WSS4J
2022-05-14 01:14:52
Improper Input Validation in Apache ActiveMQ
2022-05-17 03:22:06
activemq - security update
2015-08-07 00:00:00
nvd
nvd
CVE-2014-3612
2015-08-24 14:59:00
CVE-2015-6524
2015-08-24 14:59:13
prion
prion
Authentication flaw
2015-08-24 14:59:00
Authentication flaw
2015-08-24 14:59:00
cve
cve
CVE-2014-3612
2015-08-24 14:59:00
CVE-2015-6524
2015-08-24 14:59:13
openvas
openvas
Apache ActiveMQ < 5.10.1 Multiple Security Vulnerabilities - Linux
2017-11-07 00:00:00
Apache ActiveMQ < 5.10.1 Multiple Security Vulnerabilities - Windows
2017-11-07 00:00:00
Fedora Update for activemq FEDORA-2015-701
2015-10-05 00:00:00
nessus
nessus
Fedora 22 : activemq-5.6.0-12.fc22 (2015-701a1e1a5f)
2016-03-04 00:00:00
Fedora 23 : activemq-5.6.0-12.fc23 (2015-5622085024)
2015-10-05 00:00:00
Apache ActiveMQ 5.x < 5.10.1 Multiple Vulnerabilities
2015-10-22 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: activemq-5.6.0-12.fc22
2015-10-04 22:54:29
[SECURITY] Fedora 23 Update: activemq-5.6.0-12.fc23
2015-10-03 18:10:54
zdt
zdt
redhat
redhat
debian
debian
[SECURITY] [DSA 3330-1] activemq security update
2015-08-07 21:08:36
securityvulns
securityvulns
[SECURITY] [DSA 3330-1] activemq security update
2015-08-24 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.009
Percentile
83.1%
Related for UB:CVE-2015-6524