Apache Struts 2.0.0 < Multiple Vulnerabilities (credentialed check)

Medium Nessus Plugin ID 81105


The remote web server contains a web application that uses a Java framework that is affected by multiple vulnerabilities.


The remote web application appears to use Struts 2, a web framework that utilizes OGNL (Object-Graph Navigation Language) as an expression language. The version of Struts 2 in use is affected by multiple vulnerabilities :

- A denial of service vulnerability exists due to an issue in the Commons FileUpload version 1.3 that allows remote attackers to cause an infinite loop via a crafted Content-Type header. (CVE-2014-0050)

- A security bypass vulnerability exists due to the application allowing manipulation of the ClassLoader via the 'class' parameter, which is directly mapped to the getClass() method. A remote, unauthenticated attacker can manipulate the ClassLoader used by the application server, resulting in a bypass of certain security restrictions. (CVE-2014-0094)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.


Upgrade to version or later.

See Also



Plugin Details

Severity: Medium

ID: 81105

File Name: struts_2_3_16_1_win_local.nasl

Version: $Revision: 1.5 $

Type: local

Agent: windows

Family: Windows

Published: 2015/01/30

Modified: 2017/01/30

Dependencies: 73943

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/a:apache:struts

Required KB Items: installed_sw/Apache Struts, Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/03/05

Vulnerability Publication Date: 2014/03/06

Exploitable With

Core Impact

Metasploit (Apache Struts ClassLoader Manipulation Remote Code Execution)

Reference Information

CVE: CVE-2014-0050, CVE-2014-0094

BID: 65400, 65999

OSVDB: 102945, 103918

CERT: 719225