Thanks Tim, I did had a look at that site and it has got a comprehensive explanation against this vulnerability. Also I have been having a discussion under AMQ-6013 <https://issues.apache.org/jira/browse/AMQ-6013> and it seems that we can use CVE-2015-4852 based on comment in https://issues.apache.org/jira/browse/AMQ-6013?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15046732#comment-15046732
-- View this message in context: http://activemq.2283324.n4.nabble.com/Java-December-vulnerability-tp4704610p4704781.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.
