CVE-2017-5638 – Apache Struts 2 "Jakarta Multipart Parser" RCE

The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or Content-Length HTTP header, as exploited in the wild in March 2017 with a Content-Type header containing a cmd= string.

Reference: https://www.cvedetails.com/cve/CVE-2017-5638

Exploit used: https://github.com/mazen160/struts-pwn

DISCLAIMER:
All the information provided on this channel are for educational purposes only. The channel is no way responsible for any misuse of the information and is not responsible for any direct or indirect damage caused due to the usage of the hacks provided on this channel.

#Apache #ApacheStruts2 #RemoteCodeExecution

source

by Aliester Crowley

linux foundation