Apache Struts XSLTResult Remote Code Execution Vulnerability (CVE-2016-3082)
Publish Date: 29 de июня de 2016
Severity: : High
DESCRIPTION
XSLTResult in Apache Struts 2.x before 2.3.20.2, 2.3.24.x before 2.3.24.2, and 2.3.28.x before 2.3.28.1 allows remote attackers to execute arbitrary code via the stylesheet location parameter.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1007701