CVE-2010-1587

Apache ActiveMQ <5.3.2 and <5.4.0 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2010-1587. PoCs published by Veerendra G.G, AbdulAziz Hariri, juan vazquez, Veerendra G.G, juan vazquez, including Metasploit module auxiliary/scanner/http/apache_activemq_traversal.

AI-analyzed exploit summary This is a writeup describing an information disclosure vulnerability in Apache ActiveMQ due to improper input sanitization, allowing attackers to access source code via double slash URIs. The vulnerability is related to Jetty's handling of such URIs.

Description

The Jetty ResourceHandler in Apache ActiveMQ 5.x before 5.3.2 and 5.4.x before 5.4.0 allows remote attackers to read JSP source code via a // (slash slash) initial substring in a URI for (1) admin/index.jsp, (2) admin/queues.jsp, or (3) admin/topics.jsp.

Exploits (3)

exploitdb WRITEUP VERIFIED
by Veerendra G.G · textremotemultiple
https://www.exploit-db.com/exploits/33868

This is a writeup describing an information disclosure vulnerability in Apache ActiveMQ due to improper input sanitization, allowing attackers to access source code via double slash URIs. The vulnerability is related to Jetty's handling of such URIs.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Apache ActiveMQ 5.3.1 and prior
No auth needed
Prerequisites: Network access to the vulnerable Apache ActiveMQ instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by AbdulAziz Hariri, juan vazquez · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/apache_activemq_traversal.rb

This Metasploit module exploits a directory traversal vulnerability in Apache ActiveMQ 5.3.1 and 5.3.2 on Windows systems. It allows an attacker to read arbitrary files from the server by manipulating the URI path.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Apache ActiveMQ 5.3.1 and 5.3.2
No auth needed
Prerequisites: Network access to the target server · ActiveMQ service running on port 8161
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by Veerendra G.G, juan vazquez · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/apache_activemq_source_disclosure.rb

This Metasploit module exploits a source code disclosure vulnerability in Apache ActiveMQ by sending a crafted GET request to retrieve JSP file contents. It leverages Jetty's ResourceHandler misconfiguration to expose source code.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Apache ActiveMQ 5.3.1
No auth needed
Prerequisites: Network access to the target Apache ActiveMQ instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0278.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39567
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/39636
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/510896/100/0/threaded
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0979
Exploit vdb-entry x_refsource_osvdb
http://www.osvdb.org/64020

Scores

EPSS 0.7794
EPSS Percentile 99.0%

Details

CWE
CWE-20
Status published
Products (7)
apache/activemq 5.0.0
apache/activemq 5.1.0
apache/activemq 5.2.0
apache/activemq 5.3.0
apache/activemq 5.3.1
apache/activemq 5.4-snapshot
org.apache.activemq/activemq-web-console 5.0.0 - 5.3.2Maven
Published Apr 28, 2010
Tracked Since Feb 18, 2026