Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products

2014-07-09T16:00:00
ID CISCO-SA-20140709-STRUTS2
Type cisco
Reporter Cisco
Modified 2014-12-17T18:47:33

Description

Apache Struts 2 contains a vulnerability that could allow an unauthenticated, remote attacker to bypass security restrictions and execute arbitrary commands on the targeted system.

The vulnerability is due to insufficient sanitization on user input by the affected software. An unauthenticated, remote attacker could exploit the vulnerability by passing crafted Object-Graph Navigation Language (OGNL) expressions to bypass security restrictions and execute arbitrary commands on server-side objects.

Multiple Cisco products include an implementation of the Apache Struts 2 component that is affected by a remote command execution vulnerability identified by Apache with Common Vulnerabilities and Exposures ID CVE-2010-1870.

The vulnerability is due to insufficient sanitization on user-supplied input in the XWorks component of the affected software. The component uses the ParameterInterceptors directive to parse the Object-Graph Navigation Language (OGNL) expressions that are implemented via a whitelist feature. An attacker could exploit this vulnerability by sending crafted requests that contain OGNL expressions to an affected system. An exploit could allow the attacker to execute arbitrary code on the targeted system.

Cisco has released software updates that address this vulnerability for all the affected products except Cisco Business Edition 3000 Series. Customers using Cisco Business Edition 3000 Series should contact their Cisco representative for available options.

Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available. This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140709-struts2["http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140709-struts2"]