QwikSec

Security Database

CVE

CWE

Training

CVE-2010-1870

Published: Aug 17, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The OGNL extensive expression evaluation capability in XWork in Struts 2.0.0 through 2.1.8.1, as used in Atlassian Fisheye, Crucible, and possibly other products, uses a permissive whitelist, which allows remote attackers to modify server-side context objects and bypass the "#" protection mechanism in ParameterInterceptors via the (1) #context, (2) #_memberAccess, (3) #root, (4) #this, (5) #_typeResolver, (6) #_classResolver, (7) #_traceEvaluations, (8) #_lastEvaluation, (9) #_keepLastEvaluation, and possibly other OGNL context variables, a different vulnerability than CVE-2008-6504.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://confluence.atlassian.com/display/FISHEYE/FishEye+Security+Advisory+2010-06-16

x_refsource_CONFIRM

exploit

x_refsource_EXPLOIT-DB

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_OSVDB

http://struts.apache.org/2.2.1/docs/s2-005.html

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

http://blog.o0o.nu/2010/07/cve-2010-1870-struts2xwork-remote.html

x_refsource_MISC

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140709-struts2

x_refsource_CONFIRM

20100713 CVE-2010-1870: Struts2 remote commands execution

mailing-list

x_refsource_FULLDISC

third-party-advisory

x_refsource_SREASON

20201020 LISTSERV Maestro Remote Code Execution Vulnerability

mailing-list

x_refsource_FULLDISC

http://packetstormsecurity.com/files/159643/LISTSERV-Maestro-9.0-8-Remote-Code-Execution.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2010-1870 - Security Vulnerability | QwikSec