CVE-2010-1244 Information

Description

Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests that create queues via the JMSDestination parameter in a queue action.

Reference

http://activemq.apache.org/activemq-531-release.html http://secunia.com/advisories/39223 https://exchange.xforce.ibmcloud.com/vulnerabilities/57398 https://issues.apache.org/activemq/browse/AMQ-2613 https://issues.apache.org/activemq/browse/AMQ-2625