Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability

Bugtraq ID: 65999
Class: Design Error
CVE: CVE-2014-0094
Remote: Yes
Local: No
Published: Mar 06 2014 12:00AM
Updated: Nov 14 2014 12:58AM
Credit: Mark Thomas and Przemyslaw Celej
Vulnerable: IBM Storwize V7000 Unified 1.3.1.0
IBM Storwize V7000 Unified 1.3.0.5
IBM Storwize V7000 Unified 1.3.0.0
Apache Software Foundation Struts 2.2.3
Apache Software Foundation Struts 2.2.1 1
Apache Software Foundation Struts 2.2
Apache Software Foundation Struts 2.1.8 .1
Apache Software Foundation Struts 2.1.8
Apache Software Foundation Struts 2.1.6
Apache Software Foundation Struts 2.1.5
Apache Software Foundation Struts 2.1.2
Apache Software Foundation Struts 2.1.1
Apache Software Foundation Struts 2.1.1
Apache Software Foundation Struts 2.1
Apache Software Foundation Struts 2.0.14
Apache Software Foundation Struts 2.0.12
Apache Software Foundation Struts 2.0.11 .2
Apache Software Foundation Struts 2.0.11 .1
Apache Software Foundation Struts 2.0.11
Apache Software Foundation Struts 2.0.10
Apache Software Foundation Struts 2.0.9
Apache Software Foundation Struts 2.0.8
Apache Software Foundation Struts 2.0.7
Apache Software Foundation Struts 2.0.6
Apache Software Foundation Struts 2.0.5
Apache Software Foundation Struts 2.0.4
Apache Software Foundation Struts 2.0.3
Apache Software Foundation Struts 2.0.2
Apache Software Foundation Struts 2.0.1
Apache Software Foundation Struts 2.0
Apache Software Foundation Struts 2.3.1.2
Apache Software Foundation Struts 2.3.1.1
Apache Software Foundation Struts 2.2.3.1
Apache Software Foundation Struts 2.1.8
Apache Software Foundation Struts 2.1.4
Apache Software Foundation Struts 2.1.3
Apache Software Foundation Struts 2.0.13
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus