1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Apache Struts CVE-2014-0094

Web Attack: Apache Struts CVE-2014-0094

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to bypass a security bypass vulnerability in Apache Struts.

Additional Information

Apache Struts is a framework for building web applications.

Apache Struts is prone to a security-bypass vulnerability because it fails to restrict access to 'class' parameter which is directly mapped to 'getClass()' method through 'ParametersInterceptor'. An attacker can exploit this issue to ClassLoader manipulation.

An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks.

Apache Struts versions 2.0.0 through 2.3.16 are vulnerable.

Affected

  • Apache Struts versions 2.0.0 through 2.3.16 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube