[WW-5055] Fix for security vulnerability CVE-2012-1592 identified in the National Vulnerability Database - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Not A Problem
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
- security

External issue URL:
http://seclists.org/bugtraq/2012/Mar/110

Description

CVE-2012-1592 Detail

Current Description

A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.

See a bug report at the following URL:

http://seclists.org/bugtraq/2012/Mar/110

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Jack Hagan

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 22/Jan/20 21:12

Updated:: 04/Sep/20 00:25

Resolved:: 23/Jan/20 08:31