Return-Path: Delivered-To: apmail-activemq-dev-archive@www.apache.org Received: (qmail 82635 invoked from network); 8 Apr 2010 09:05:34 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 8 Apr 2010 09:05:34 -0000 Received: (qmail 87781 invoked by uid 500); 8 Apr 2010 09:05:34 -0000 Delivered-To: apmail-activemq-dev-archive@activemq.apache.org Received: (qmail 87712 invoked by uid 500); 8 Apr 2010 09:05:33 -0000 Mailing-List: contact dev-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@activemq.apache.org Delivered-To: mailing list dev@activemq.apache.org Received: (qmail 87704 invoked by uid 99); 8 Apr 2010 09:05:32 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 08 Apr 2010 09:05:32 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 08 Apr 2010 09:05:30 +0000 Received: from brutus.apache.org (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 4A295234C4AB for ; Thu, 8 Apr 2010 09:05:09 +0000 (UTC) Message-ID: <244388780.14441270717509302.JavaMail.jira@brutus.apache.org> Date: Thu, 8 Apr 2010 09:05:09 +0000 (UTC) From: "James Casey (JIRA)" To: dev@activemq.apache.org Subject: [jira] Commented: (AMQ-2613) Persistent Cross-site Scripting in /createDesitnation.action [JMSDestination parameter] In-Reply-To: <823914169.2221266434560069.JavaMail.jira@brutus.apache.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: ae95407df07c98740808b2ef9da0087c X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/activemq/browse/AMQ-2613?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=58706#action_58706 ] James Casey commented on AMQ-2613: ---------------------------------- Dejan, my mistake, activemq was picking up an old config file during my tests. I confirm this now looks fixed. I think you can close it now (again !) thanks, James. > Persistent Cross-site Scripting in /createDesitnation.action [JMSDestination parameter] > --------------------------------------------------------------------------------------- > > Key: AMQ-2613 > URL: https://issues.apache.org/activemq/browse/AMQ-2613 > Project: ActiveMQ > Issue Type: Bug > Affects Versions: 5.3.0 > Environment: Linux environment. > Reporter: Rajat Swarup > Assignee: Dejan Bosanac > Priority: Critical > Fix For: 5.3.1, 5.4.0 > > > GET /createDestination.action?JMSDestinationType=queue&JMSDestination=%22%3E%3Cscript%3Ealert%28%22persistent%20XSS%22%29%3C%2fscript%3E > This GET request creates a queue name that has malformed queue name due to lack of input validation. After sending this request a sample of the effect can be seen by browsing to /queues.jsp and clicking on the "Home" link. > I do not know the affected version information yet. Is there some way I can find it? > Additionally, this is vulnerable to cross-site request forgery as well but XSS is a more critical bug than XSRF (at least at this point for me I guess). > ---- > CVE Identifier issued for this: > CVE-2010-0684 -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.