Apache Struts REST Plugin Remote Code Execution Vulnerability (CVE-2016-4438)

  Severity: MEDIUM

  DESCRIPTION

A remote code execution vulnerability exists in Apache Struts such that upon successful exploitation a malicious expression can be used to execute arbitrary code on server side when using the REST Plugin.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1007702