CVE-2016-0899
published 2016-07-04CVE-2016-0899: EMC RSA Archer GRC 5.5.x before 5.5.3.4 allows remote authenticated users to read the web.config.bak file, and obtain sensitive credential information, by…
PriorityP429medium6.3CVSS 3.0
AVNACHPRLUINSCCHINAN
EPSS
0.83%
52.9th percentile
EMC RSA Archer GRC 5.5.x before 5.5.3.4 allows remote authenticated users to read the web.config.bak file, and obtain sensitive credential information, by modifying the IIS configuration to set a Content-Type header for .bak files.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| emc | rsa_archer_egrc | — | — |
| emc | rsa_archer_egrc | — | — |
| emc | rsa_archer_egrc | — | — |
| emc | rsa_archer_egrc | — | — |
CVSS provenance
nvdv3.06.3MEDIUMCVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:P/I:N/A:N
ghsa7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3p5p-wf36-fw98: EMC RSA Archer GRC 5
ghsa_unreviewed·2022-05-17
CVE-2016-0899 [MEDIUM] CWE-200 GHSA-3p5p-wf36-fw98: EMC RSA Archer GRC 5
EMC RSA Archer GRC 5.5.x before 5.5.3.4 allows remote authenticated users to read the web.config.bak file, and obtain sensitive credential information, by modifying the IIS configuration to set a Content-Type header for .bak files.
GHSA
Improper Input Validation in Apache Struts
ghsa·2022-05-13·CVSS 7.5
CVE-2016-1181 [HIGH] CWE-20 Improper Input Validation in Apache Struts
Improper Input Validation in Apache Struts
ActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an ActionForm instance, which allows remote attackers to execute arbitrary code or cause a denial of service (unexpected memory access) via a multipart request, a related issue to CVE-2015-0899.
GHSA
Improper Input Validation in Apache Struts
ghsa·2022-05-13·CVSS 7.5
CVE-2016-1182 [HIGH] CWE-20 Improper Input Validation in Apache Struts
Improper Input Validation in Apache Struts
ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct cross-site scripting (XSS) attacks or cause a denial of service via crafted input, a related issue to CVE-2015-0899.
Red Hat
struts: Vulnerability in ActionForm allows unintended remote operations against components on server memory
vendor_redhat·2016-06-07·CVSS 7.5
CVE-2016-1181 [HIGH] struts: Vulnerability in ActionForm allows unintended remote operations against components on server memory
struts: Vulnerability in ActionForm allows unintended remote operations against components on server memory
ActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an ActionForm instance, which allows remote attackers to execute arbitrary code or cause a denial of service (unexpected memory access) via a multipart request, a related issue to CVE-2015-0899.
Statement: This issue affects the version of struts shipped with Red Hat Enterprise Linux 5, which is currently in Extended Life Phase. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification https://access.redhat.com/security/updates/classification/ and the Red Hat Enterprise Linux Life Cycle https://access.redhat.
Red Hat
struts: Improper input validation in Validator
vendor_redhat·2016-06-07·CVSS 7.5
CVE-2016-1182 [HIGH] CWE-20 struts: Improper input validation in Validator
struts: Improper input validation in Validator
ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct cross-site scripting (XSS) attacks or cause a denial of service via crafted input, a related issue to CVE-2015-0899.
Statement: This issue affects the version of struts shipped with Red Hat Enterprise Linux 5, which is currently in Extended Life Phase. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification https://access.redhat.com/security/updates/classification/ and the Red Hat Enterprise Linux Life Cycle https://access.redhat.com/support/policy/updates/errata/.
Package: struts (Red Hat Enterprise Linu
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-1181 struts: Vulnerability in ActionForm allows unintended remote operations against components on server memory
bugzilla·2016-06-07·CVSS 7.5
CVE-2016-1181 [HIGH] CVE-2016-1181 struts: Vulnerability in ActionForm allows unintended remote operations against components on server memory
CVE-2016-1181 struts: Vulnerability in ActionForm allows unintended remote operations against components on server memory
A vulnerability in Apache Struts 1 ActionForm allowing unintended remote operations against components on server memory, such as Servlets and ClassLoader, was found.
Affects Apache Struts versions 1.0 through 1.3.10
External References:
https://jvn.jp/en/jp/JVN03188560/
Discussion:
Created struts tracking bugs for this issue:
Affects: fedora-all [bug 1343541]
Affects: epel-7 [bug 1343542]
---
Seem a duplicate of CVE-2015-0899. Already fixed
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0899
---
Patch:
https://github.com/kawasima/struts1-forever/commit/eda3a79907ed8fcb0387a0496d0cb14332f250e8
---
struts-1.3.10-18.fc23 has been pushed to the Fedora 23
Bugzilla
CVE-2016-1182 struts: Improper input validation in Validator
bugzilla·2016-06-07·CVSS 7.5
CVE-2016-1182 [HIGH] CVE-2016-1182 struts: Improper input validation in Validator
CVE-2016-1182 struts: Improper input validation in Validator
It was reported that The Apache Struts 1 Validator contains a vulnerability where input validation configurations (validation rules, error messages, etc.) may be modified. This occurs when ValidatorForm and ValidatorActionForm (including its subclasses) are in the session scope.
Affects Apache Struts 1 versions 1.0 through 1.3.10.
External References:
https://jvn.jp/en/jp/JVN65044642/
Discussion:
Created struts tracking bugs for this issue:
Affects: fedora-all [bug 1343541]
Affects: epel-7 [bug 1343542]
---
Seem a duplicate of CVE-2015-0899. Already fixed
---
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0899
---
struts-1.3.10-18.fc23 has been pushed to the Fedora 23 stable repository. If problems still persis
2016-07-04
Published