Signature Detail

HTTP: Apache Struts 2 Commons FileUpload Insecure Deserialization

This signature detects attempts to exploit a known vulnerability against Apache Struts 2. This vulnerability is due to Apache Struts 2 having a dependency on a vulnerable version of Commons FileUpload. A remote attacker can exploit this vulnerability by sending a specially crafted serialized objects to an application using Apache Struts 2 that also has a suitable attack vector. Successful exploitation can result in arbitrary file upload withing the security context of the target application.

Extended Description

Per Apache: "Having reviewed your report we have concluded that it does not represent a valid vulnerability in Apache Commons File Upload. If an application deserializes data from an untrusted source without filtering and/or validation that is an application vulnerability not a vulnerability in the library a potential attacker might leverage."

Affected Products

• Apache commons_fileupload 1.3.2

References

• CVE: CVE-2016-1000031
• URL: https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20181107-struts-commons-fileupload