Executive Summary

Informations
NameCVE-2010-1870First vendor Publication2010-08-17
VendorCveLast vendor Modification2011-09-21

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthentificationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The OGNL extensive expression evaluation capability in XWork in Struts 2.0.0 through 2.1.8.1, as used in Atlassian Fisheye, Crucible, and possibly other products, uses a permissive whitelist, which allows remote attackers to modify server-side context objects and bypass the "#" protection mechanism in ParameterInterceptors via the (1) #context, (2) #_memberAccess, (3) #root, (4) #this, (5) #_typeResolver, (6) #_classResolver, (7) #_traceEvaluations, (8) #_lastEvaluation, (9) #_keepLastEvaluation, and possibly other OGNL context variables, a different vulnerability than CVE-2008-6504.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1870

CPE : Common Platform Enumeration

TypeDescriptionCount
Application26

SAINT Exploits

DescriptionLink
Apache Struts2 XWork ParameterInterceptor security bypassMore info here

ExploitDB Exploits

idDescription
2010-07-14Struts2/XWork < 2.2.0 Remote Command Execution Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
66280Struts XWork ParameterInterceptor Server-Side Object Remote Code Execution

Metasploit Database

idDescription
2010-07-13 Apache Struts < 2.2.0 Remote Command Execution

Internal Sources (Detail)

SourceUrl
BIDhttp://www.securityfocus.com/bid/41592
CONFIRMhttp://confluence.atlassian.com/display/FISHEYE/FishEye+Security+Advisory+201...
http://struts.apache.org/2.2.1/docs/s2-005.html
EXPLOIT-DBhttp://www.exploit-db.com/exploits/14360
FULLDISChttp://seclists.org/fulldisclosure/2010/Jul/183
MISChttp://blog.o0o.nu/2010/07/cve-2010-1870-struts2xwork-remote.html
OSVDBhttp://www.osvdb.org/66280
SREASONhttp://securityreason.com/securityalert/8345

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
DateInformations
2013-06-11 17:25:13
  • Multiple Updates
2013-06-11 13:25:34
  • Multiple Updates
2013-06-10 13:25:29
  • Multiple Updates
2013-06-10 09:25:21
  • Multiple Updates
2013-06-08 05:26:40
  • Multiple Updates
2013-06-07 21:25:05
  • Multiple Updates
2013-06-06 13:25:57
  • Multiple Updates
2013-06-06 05:24:33
  • Multiple Updates
2013-06-04 17:26:04
  • Multiple Updates
2013-06-04 13:25:15
  • Multiple Updates
2013-06-03 21:27:41
  • Multiple Updates
2013-06-03 17:21:49
  • Multiple Updates
2013-06-03 13:26:05
  • Multiple Updates
2013-06-03 05:22:14
  • Multiple Updates
2013-05-31 21:26:01
  • Multiple Updates
2013-05-31 17:21:52
  • Multiple Updates
2013-05-30 17:24:47
  • Multiple Updates
2013-05-30 13:21:56
  • Multiple Updates
2013-05-10 23:25:08
  • Multiple Updates
2013-05-01 17:22:38
  • Multiple Updates
2013-05-01 13:28:06
  • Multiple Updates
2013-05-01 09:22:47
  • Multiple Updates
2013-05-01 05:38:31
  • Multiple Updates