728x90
아파치 스트럭츠 서버는 주의가 필요합니다.
Apache Struts 2: possible RCE in the Struts Showcase app in the Struts 1 plugin example in the Struts 2.3.x series
A potential security vulnerability was reported in the Struts 1 plugin used in the Struts 2.3.x series. It is possible to perform a Remote Code Execution attack if given construction exists in the vulnerable application. Please read the security bulletin for more details and inspect your application. - S2-048 Possible RCE in the Struts Showcase app in the Struts 1 plugin example in Struts 2.3.x series http://struts.apache.org/docs/s2-048.html http://struts.apache.org/announce.html#a20170707 NOTE: Please notice that this vulnerability does not affect applications using Struts 2.5.x series or applications that do not use the Struts 1 plugin. Even if the plugin is available but certain code construction is not present, your application is safe.
728x90
'취약점 정보2' 카테고리의 다른 글
LG모바일 7월 취약점 요약 (0) | 2017.07.09 |
---|---|
삼성모바일 7월 업데이트 내역 (0) | 2017.07.09 |
BIND DNS 신규 취약점 보안 업데이트 권고 (0) | 2017.07.03 |
Cisco IOS 소프트웨어 신규 취약점 주의 권고 (0) | 2017.07.03 |
CISCO IOS / IOS XE SNMPV1 / SNMPV2C / SNMPV3 버퍼 오버 플로우 (0) | 2017.07.01 |