Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0114

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-0114
Last Modified 15 May 2015 09:59:22
Published 30 Apr 2014 06:49:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0114

Summary

Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.

Vulnerable Systems

Application

  • Apache Struts 1.0

  • Apache Struts 1.0.2

  • Apache Struts 1.1

  • Apache Struts 1.2.2

  • Apache Struts 1.2.4

  • Apache Struts 1.2.6

  • Apache Struts 1.2.7

  • Apache Struts 1.2.8

  • Apache Struts 1.2.9

  • Apache Struts 1.3.10

  • Apache Struts 1.3.5

  • Apache Struts 1.3.8


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1091938

CONFIRM - https://issues.apache.org/jira/browse/BEANUTILS-463

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1116665

CONFIRM - https://access.redhat.com/solutions/869353

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21676931

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21676375

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21676303

SECUNIA - 59704

SECUNIA - 59014

SECUNIA - 58851

MLIST - [oss-security] 20140707 Re: CVE request for commons-beanutils: 'class' property is exposed, potentially leading to RCE

MLIST - [oss-security] 20140616 CVE request for commons-beanutils: 'class' property is exposed, potentially leading to RCE

CONFIRM - http://commons.apache.org/proper/commons-beanutils/javadocs/v1.9.2/RELEASE-NOTES.txt

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

SECUNIA - 60703

SECUNIA - 60177

FEDORA - FEDORA-2014-9380

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html

DEBIAN - DSA-2940

HP - HPSBST03160

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2014-0012.html

BUGTRAQ - 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

BUGTRAQ - 20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE

MISC - http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21676091


Last Updated: 27 May 2016 11:08:47