Apache Struts Vulnerability - CVE-2017-9791

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "users@xxxxxxxxxxxxxxxx" <users@xxxxxxxxxxxxxxxx>
Subject: Apache Struts Vulnerability - CVE-2017-9791
From: "Chunduru, Krishnachaithanya" <Krishnachaithanya.Chunduru@xxxxxxxxxxxxxx>
Date: Fri, 21 Jul 2017 22:05:30 +0530
Accept-language: en-US
Acceptlanguage: en-US
Reply-to: users@xxxxxxxxxxxxxxxx
Thread-index: AdMCPrCESqMIcPBBRaykoqb/FxP7wQ==
Thread-topic: Apache Struts Vulnerability - CVE-2017-9791

Hi All,

Can someone please confirm if Apache 2.4.10 is vulnerable to the CVE-2017-9791.

We came to know that Apache which is having Apache Struts version 2.3.x with Struts 1 plugin and Struts 1 action is highly vulnerable . If exploited, this vulnerability would allow a remote code execution attack.

Regards,

Krishna

This message and any attachments are intended only for the use of the addressee and may contain information that is privileged and confidential. If the reader of the message is not the intended recipient or an authorized representative of the intended recipient, you are hereby notified that any dissemination of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by e-mail and delete the message and any attachments from your system.

Follow-Ups:
- Re: Apache Struts Vulnerability - CVE-2017-9791
  - From: Luca Toscano

Prev by Date: Re: How to different SSLProtocol for each of the conf files
Next by Date: Re: Apache Struts Vulnerability - CVE-2017-9791
Previous by thread: How to different SSLProtocol for each of the conf files
Next by thread: Re: Apache Struts Vulnerability - CVE-2017-9791
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]