Apache Struts CVE-2013-2251 Multiple Remote Command Execution Vulnerabilities

Bugtraq ID: 61189
Class: Input Validation Error
CVE: CVE-2013-2251
Remote: Yes
Local: No
Published: Jul 16 2013 12:00AM
Updated: Aug 12 2015 10:01PM
Credit: Takeshi Terada of Mitsui Bussan Secure Directions, Inc.
Vulnerable: Oracle Siebel Apps - E-Billing 6.1.1
Oracle Siebel Apps - E-Billing 6.2
Oracle Siebel Apps - E-Billing 6.1
Oracle MySQL Enterprise Monitor 2.3.13
Oracle FLEXCUBE Private Banking 12.0.1
Oracle FLEXCUBE Private Banking 2.2 1
Oracle FLEXCUBE Private Banking 2.0.1
Oracle FLEXCUBE Private Banking 3.0
Oracle FLEXCUBE Private Banking 2.0
Oracle FLEXCUBE Private Banking 1.7
IBM Storwize V7000 Unified 1.4 1
IBM Storwize V7000 Unified 1.3.2 3
IBM Storwize V7000 Unified 1.3.2 1
IBM Storwize V7000 Unified 1.3.2 0
IBM Storwize V7000 Unified 1.4.1.1
IBM Storwize V7000 Unified 1.4.1.0
IBM Storwize V7000 Unified 1.3.1.0
IBM Storwize V7000 Unified 1.3.0.5
IBM Storwize V7000 Unified 1.3.0.0
IBM Storwize V7000 7.1
IBM Storwize V7000 6.4
IBM Storwize V7000 6.3
IBM Storwize V7000 6.2
IBM Storwize V7000 6.1
IBM Storwize V5000 7.1
IBM Storwize V5000 6.4
IBM Storwize V5000 6.3
IBM Storwize V5000 6.2
IBM Storwize V5000 6.1
IBM Storwize V3700 7.1
IBM Storwize V3700 6.4
IBM Storwize V3700 6.3
IBM Storwize V3700 6.2
IBM Storwize V3700 6.1
IBM Storwize V3500 7.1
IBM Storwize V3500 6.4
IBM Storwize V3500 6.3
IBM Storwize V3500 6.2
IBM Storwize V3500 6.1
IBM Sterling Web Channel 9.1
IBM Sterling Web Channel 9.0
IBM Sterling Selling and Fulfillment Foundation 9.2.1
IBM Sterling Selling and Fulfillment Foundation 9.2
IBM Sterling Selling and Fulfillment Foundation 9.1
IBM Sterling Selling and Fulfillment Foundation 9.0
IBM Sterling Order Management 8.5
IBM Sterling Field Sales 9.2.1
IBM Sterling Field Sales 9.2.0
IBM Sterling Field Sales 9.1.0
IBM Sterling Field Sales 9.0
IBM SAN Volume Controller 7.1
IBM SAN Volume Controller 6.4
IBM SAN Volume Controller 6.3
IBM SAN Volume Controller 6.2
IBM SAN Volume Controller 6.1
IBM Platform Symphony 6.1.1
IBM Platform Symphony 6.1
IBM Platform Symphony 5.2
IBM Platform HPC 4.1.1
IBM Platform HPC 3.2
IBM Platform Cluster Manager- Standard Edition 4.1
IBM Platform Cluster Manager- Standard Edition 3.2
IBM Platform Cluster Manager- Advanced Edition 4.1
IBM Platform Cluster Manager- Advanced Edition 3.2
IBM Platform Application Center 9.1.1
IBM Platform Application Center 9.1
IBM Platform Application Center 8.3
IBM Flex System V7000 7.1
IBM Flex System V7000 6.4
IBM Flex System V7000 6.3
IBM Flex System V7000 6.2
IBM Flex System V7000 6.1
IBM Connections 4.5
IBM Connections 4.0
IBM Connections 3.0.1.1
IBM Connections 3.0.1
Huawei Portal V100R002C83
Huawei Portal V100R002C01
Huawei Portal V100R002C00
Huawei OceanStor CSS V100R001
Huawei OceanStor CSE V100R002
Huawei GalaX8800 V100R002C85
Huawei GalaX8800 V100R002C83
Huawei GalaX8800 V100R002C01
Huawei GalaX8800 V100R002C00
Huawei DC Integration Solution V100R001C02
Fujitsu Interstage Business Process Manager Analytics For Solaris 12.1
Fujitsu Interstage Business Process Manager Analytics For Linux 12.1
Fujitsu Interstage Business Process Manager Analytics For Linux 12.0
Fujitsu Interstage Business Process Manager Analytics 12.1
Fujitsu Interstage Business Process Manager Analytics 12.0
Cisco Unified SIP Proxy 0
Cisco Media Experience Engine (MXE) 3500 0
Cisco Identity Services Engine 0
Cisco Business Edition 3000 0
Atlassian Fisheye 3.0.1
Atlassian Fisheye 2.10.5
Atlassian Crucible 3.0.1
Atlassian Crucible 2.10.5
Arubanetworks ClearPass 6.0.2
Arubanetworks ClearPass 6.0.1
Arubanetworks ClearPass 6.2.0
Arubanetworks ClearPass 6.1.0
Arubanetworks ClearPass 5.0
Apache Struts 2.3.4 1
Apache Struts 2.3.4
Apache Struts 2.2.3
Apache Struts 2.2
Apache Struts 2.1.6
Apache Struts 2.1.5
Apache Struts 2.1.2
Apache Struts 2.1.1
Apache Struts 2.1.1
Apache Struts 2.1
Apache Struts 2.0.14
Apache Struts 2.0.12
Apache Struts 2.0.11
Apache Struts 2.0.10
Apache Struts 2.0.9
Apache Struts 2.0.8
Apache Struts 2.0.7
Apache Struts 2.0.6
Apache Struts 2.0.5
Apache Struts 2.0.4
Apache Struts 2.0.3
Apache Struts 2.0.2
Apache Struts 2.0.1
Apache Struts 2.0
Apache Struts 2.3.15
Apache Struts 2.3.14.3
Apache Struts 2.3.14.2
Apache Struts 2.3.14.1
Apache Struts 2.3.14
Apache Struts 2.3.1.2
Apache Struts 2.3.1.1
Apache Struts 2.2.3.1
Apache Struts 2.1.8
Apache Struts 2.1.4
Apache Struts 2.1.3
Apache Struts 2.0.13
Apache Continuum 1.4
Apache Continuum 1.3.7
Apache Continuum 1.3.6
Apache Continuum 1.3.1
Apache Archiva 1.3.4
Apache Archiva 1.3.3
Apache Archiva 1.3.2
Apache Archiva 1.3.1
Apache Archiva 1.2.2
Apache Archiva 1.2.1
Apache Archiva 1.3.6
Apache Archiva 1.3.5
Apache Archiva 1.3
Apache Archiva 1.2
Not Vulnerable: IBM Storwize V7000 Unified 1.4.2.0
IBM Storwize V7000 7.1.0.5
IBM SAN Volume Controller 7.1.0.5
Cisco Unified SIP Proxy 8.5(5)
Cisco Media Experience Engine (MXE) 3500 3.3.2
Cisco Identity Services Engine 1.2 899
Cisco Identity Services Engine 1.1.4 218-4
Cisco Identity Services Engine 1.1.3 124-4
Cisco Identity Services Engine 1.1.2 145-9
Cisco Identity Services Engine 1.1.1 268-6
Cisco Identity Services Engine 1.1 665-4
Cisco Identity Services Engine 1.0.4 573-6
Atlassian Fisheye 3.0.2
Atlassian Fisheye 2.10.6
Atlassian Crucible 3.0.2
Atlassian Crucible 2.10.6
Arubanetworks ClearPass 6.2.0.54567
Arubanetworks ClearPass 6.1.3
Apache Struts 2.3.15.1
Apache Continuum 1.4.2
Apache Archiva 2.0.1
Apache Archiva 2.0
Apache Archiva 1.3.8


 

Privacy Statement
Copyright 2010, SecurityFocus