Apache Struts XSLTResult Remote Code Execution Vulnerability (CVE-2016-3082)
Publish date: 29 de junio de 2016
Gravedad: High
Descripción
XSLTResult in Apache Struts 2.x before 2.3.20.2, 2.3.24.x before 2.3.24.2, and 2.3.28.x before 2.3.28.1 allows remote attackers to execute arbitrary code via the stylesheet location parameter.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1007701