HTTP: Apache Struts 2 CookieInterceptor OGNL Script Injection
This signature detects attempts to exploit a known vulnerability in Apache Struts 2. A successful attack will result in the execution of arbitrary expressions in the security context of the affected web application server.
Extended Description
Apache Struts is prone to an arbitrary file-overwrite vulnerability and a remote command execution vulnerability. Successful exploits will allow attackers to overwrite arbitrary files on the affected computer and execute arbitrary commands with the privileges of the user running the affected application. Versions prior to Apache Struts 2.3.1.1 is vulnerable; other versions may also be affected.
Affected Products
Apache_software_foundation struts
Short Name
HTTP:APACHE:STRUTS2-COOKIE-OGNL
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
2 Apache CVE-2012-0392 CookieInterceptor Injection OGNL Script Struts bid:51257
Release Date
02/09/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3347
False Positive
Unknown
Vendors
Apache_software_foundation
CVSS Score
6.8