This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
HTTP:APACHE:APACHE-REST-DE-SRL1
|
Severity |
Major
|
Recommended |
Yes
|
Recommended Action |
Drop
|
Category |
HTTP
|
Keywords |
Apache Struts 2 REST Plugin XStreamHandler Insecure Deserialization
|
Release Date |
2017/09/12
|
Update Number |
2988
|
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
HTTP: Apache Struts 2 REST Plugin XStreamHandler Insecure Deserialization
An insecure deserialization vulnerability has been discovered in Apache Struts 2 REST Plugin. A remote attacker could exploit this vulnerability by sending a crafted request to the target server. Successful exploitation will allow an attacker to execute arbitrary code with the privileges of the server.
Extended Description
The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads.
Affected Products
- Apache struts 2.1.2
- Apache struts 2.1.3
- Apache struts 2.1.4
- Apache struts 2.1.5
- Apache struts 2.1.6
- Apache struts 2.1.8
- Apache struts 2.1.8.1
- Apache struts 2.2.1
- Apache struts 2.2.1.1
- Apache struts 2.2.3
- Apache struts 2.2.3.1
- Apache struts 2.3.1
- Apache struts 2.3.1.1
- Apache struts 2.3.12
- Apache struts 2.3.1.2
- Apache struts 2.3.14
- Apache struts 2.3.14.1
- Apache struts 2.3.14.2
- Apache struts 2.3.14.3
- Apache struts 2.3.15
- Apache struts 2.3.15.1
- Apache struts 2.3.15.2
- Apache struts 2.3.15.3
- Apache struts 2.3.16
- Apache struts 2.3.16.1
- Apache struts 2.3.16.2
- Apache struts 2.3.16.3
- Apache struts 2.3.20
- Apache struts 2.3.20.1
- Apache struts 2.3.20.3
- Apache struts 2.3.24
- Apache struts 2.3.24.1
- Apache struts 2.3.24.3
- Apache struts 2.3.28
- Apache struts 2.3.28.1
- Apache struts 2.3.29
- Apache struts 2.3.3
- Apache struts 2.3.30
- Apache struts 2.3.31
- Apache struts 2.3.32
- Apache struts 2.3.33
- Apache struts 2.3.4
- Apache struts 2.3.4.1
- Apache struts 2.3.7
- Apache struts 2.3.8
- Apache struts 2.5.1
- Apache struts 2.5.10
- Apache struts 2.5.10.1
- Apache struts 2.5.11
- Apache struts 2.5.12
- Apache struts 2.5.2
- Apache struts 2.5.3
- Apache struts 2.5.4
- Apache struts 2.5.5
- Apache struts 2.5.6
- Apache struts 2.5.7
- Apache struts 2.5.8
- Apache struts 2.5.9
References