Apache Archiva Multiple Remote Command Execution Vulnerabilities Network Vulnerability

Summary

Apache Archiva is prone to multiple remote command-execution vulnerabilities.

Impact

Successful exploits will allow remote attackers to execute arbitrary commands within the context of the affected application.

Solution

Ask the vendor for an update.

Insight

Apache Archiva use Apache Struts2: "In Struts 2 before 2.3.15.1 the information following "action:", "redirect:" or "redirectAction:" is not properly sanitized. Since said information will be evaluated as OGNL expression against the value stack, this introduces the possibility to inject server side code."

Affected

Apache Archiva <= 1.3.6

Detection

Send a special crafted HTTP GET request and check the response.

References

http://cxsecurity.com/issue/WLB-2014010087
http://struts.apache.org/release/2.3.x/docs/s2-016.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-2251
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

AudiStat multiple vulnerabilities
ActivePerl perlIS.dll Buffer Overflow
ASP-Dev XM Event Diary Multiple Vulnerabilities
Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability
AWStats configdir parameter arbitrary cmd exec

Take action and discover your vulnerabilities