Apache Struts Remote Command Execution and Arbitrary File Overwrite Vulnerabilities

Bugtraq ID: 51257
Class: Input Validation Error
CVE: CVE-2012-0392
CVE-2012-0393
Remote: Yes
Local: No
Published: Jan 04 2012 12:00AM
Updated: Mar 19 2015 09:33AM
Credit: Bruce Phillips and Johannes Dahse
Vulnerable: VMWare vCenter Orchestrator 4.1
VMWare vCenter Orchestrator 4.0
Apache Software Foundation Struts 2.2.3
Apache Software Foundation Struts 2.2.1 1
Apache Software Foundation Struts 2.2
Apache Software Foundation Struts 2.1.8 .1
Apache Software Foundation Struts 2.1.8
Apache Software Foundation Struts 2.1.6
Apache Software Foundation Struts 2.1.5
Apache Software Foundation Struts 2.1.2
Apache Software Foundation Struts 2.1.1
Apache Software Foundation Struts 2.1.1
Apache Software Foundation Struts 2.1
Apache Software Foundation Struts 2.0.14
Apache Software Foundation Struts 2.0.12
Apache Software Foundation Struts 2.0.11 .2
Apache Software Foundation Struts 2.0.11 .1
Apache Software Foundation Struts 2.0.11
Apache Software Foundation Struts 2.0.10
Apache Software Foundation Struts 2.0.9
Apache Software Foundation Struts 2.0.8
Apache Software Foundation Struts 2.0.7
Apache Software Foundation Struts 2.0.6
Apache Software Foundation Struts 2.0.5
Apache Software Foundation Struts 2.0.4
Apache Software Foundation Struts 2.0.3
Apache Software Foundation Struts 2.0.2
Apache Software Foundation Struts 2.0.1
Apache Software Foundation Struts 2.0
Apache Software Foundation Struts 2.2.3.1
Apache Software Foundation Struts 2.1.8
Apache Software Foundation Struts 2.1.4
Apache Software Foundation Struts 2.1.3
Apache Software Foundation Struts 2.0.13
Not Vulnerable: Apache Software Foundation Struts 2.3.1.1


 

Privacy Statement
Copyright 2010, SecurityFocus