Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:APACHE:STRUTS2-PI-RCE

Severity

 Critical

Recommended

 Yes

Recommended Action

 Drop

Category

 HTTP

Keywords

 Apache Struts2 ParametersInterceptor Remote Command Execution

Release Date

 2010/09/28

Update Number

 1780

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+

HTTP: Apache Struts2 ParametersInterceptor Remote Command Execution


This signature detects attempts to exploit a known command execution vulnerability in Apache Struts2; it exists in the Web application framework Apache Struts2. It is due to insufficient input validation in the ParametersInterceptor component when parsing incoming HTTP requests. A remote attacker can leverage this vulnerability by sending a crafted HTTP request to a target system. This malicious code would be executed within the privileges of the affected service. Unsuccessful attack attempts can cause the targeted Web application to stop responding or enter into an error state, resulting in a denial-of-service condition.

Extended Description

XWork is prone to a security-bypass vulnerability because it fails to adequately handle user-supplied input. Attackers can exploit this issue to manipulate server-side context objects with the privileges of the user running the application. Successful exploits can compromise the application and possibly the underlying computer. This issue is related to the vulnerability documented in BID 32101 (XWork 'ParameterInterceptor' Class OGNL Security Bypass Vulnerability); the implemented solution appears to have been incomplete.

Affected Products

  • Apache Software Foundation Struts 2.0.0
  • Apache Software Foundation Struts 2.0.1
  • Apache Software Foundation Struts 2.0.11.1
  • Apache Software Foundation Struts 2.0.11 .2
  • Apache Software Foundation Struts 2.0.12
  • Apache Software Foundation Struts 2.0.2
  • Apache Software Foundation Struts 2.0.3
  • Apache Software Foundation Struts 2.0.4
  • Apache Software Foundation Struts 2.0.5
  • Apache Software Foundation Struts 2.0.6
  • Apache Software Foundation Struts 2.0.7
  • Apache Software Foundation Struts 2.0.8
  • Apache Software Foundation Struts 2.0.9
  • Apache Software Foundation Struts 2.1.0
  • Apache Software Foundation Struts 2.1.1
  • Apache Software Foundation Struts 2.1.8
  • Apache Software Foundation Struts 2.1.8.1
  • Atlassian Crucible 2.2.3
  • Atlassian Crucible 2.3.2
  • Atlassian Fisheye 2.2.3
  • Atlassian Fisheye 2.3.4
  • OpenSymphony XWork 2.0.1
  • OpenSymphony XWork 2.0.2
  • OpenSymphony XWork 2.0.3
  • OpenSymphony XWork 2.0.4
  • OpenSymphony XWork 2.0.5
  • OpenSymphony XWork 2.0.6
  • OpenSymphony XWork 2.1.0
  • OpenSymphony XWork 2.1.5
  • VMWare vCenter Orchestrator 4.0
  • VMWare vCenter Orchestrator 4.1

References

  • BugTraq: 41592
  • CVE: CVE-2010-1870
  • URL: http://struts.apache.org/2.1.8.1/docs/version-notes-221.html
  • URL: http://secunia.com/advisories/40575

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy & Policy
Legal Notices
Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out