Recently, several serious vulnerabilities have been found in the framework of the Apache Struts Web application. By using the signature of the application firewall, Citrix was able to quickly generate new signatures that would block any attempts to exploit the vulnerabilities Struts. These signatures can be found at: http://support.citrix.com/article/ctx138807. They will also be part of the next round of updates to regular signatures provided by Citrix
The links to information on Struts vulnerabilities are as follows :.
- following information "action", "redirect" or "redirectAction" is not properly sanitized: http: // struts .apache.org / release /2.3.x/docs/s2-016.html
- an application that included a request parameter designed could be used to OGNL inject arbitrary code in the stack: http://struts.apache.org/development/2.x/docs/s2-014.html
- filters designed to prevent attackers to call arbitrary methods in the settings can be bypassed: http://archives.neohapsis.com/archives/bugtraq/2012-01/0031.html
0 Komentar