6.8

CVE-2007-4556

Struts support in OpenSymphony XWork before 1.2.3, and 2.x before 2.0.4, as used in WebWork and Apache Struts, recursively evaluates all input as an Object-Graph Navigation Language (OGNL) expression when altSyntax is enabled, which allows remote attackers to cause a denial of service (infinite loop) or execute arbitrary code via form input beginning with a "%{" sequence and ending with a "}" character.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OpensymphonyXwork Version < 1.2.3
OpensymphonyXwork Version >= 2.0.0 <= 2.0.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 25.75% 0.977
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://forums.opensymphony.com/ann.jspa?annID=54
Patch
Vendor Advisory
http://issues.apache.org/struts/browse/WW-2030
Third Party Advisory
http://jira.opensymphony.com/browse/XW-544
Vendor Advisory
http://jira.opensymphony.com/secure/ReleaseNote.jspa?projectId=10050&styleName=Html&version=21701
Vendor Advisory
http://jira.opensymphony.com/secure/ReleaseNote.jspa?projectId=10050&styleName=Html&version=21706
Vendor Advisory
http://osvdb.org/37072
Broken Link
http://secunia.com/advisories/26681
Third Party Advisory
http://secunia.com/advisories/26693
Third Party Advisory
http://secunia.com/advisories/26694
Third Party Advisory
http://struts.apache.org/2.x/docs/s2-001.html
Patch
Third Party Advisory
http://wiki.opensymphony.com/display/WW/1.2.3+Press+Release
Vendor Advisory
http://www.securityfocus.com/bid/25524
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2007/3041
Third Party Advisory
http://www.vupen.com/english/advisories/2007/3042
Third Party Advisory