7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.014 Low
EPSS
Percentile
86.6%
ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 with
BeanUtils 1.7 allows remote attackers to cause a denial of service via a
multipart/form-data encoded form with a parameter name that references the
public getMultipartRequestHandler method, which provides further access to
elements in the CommonsMultipartRequestHandler implementation and
BeanUtils.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | libstruts1.2-java | < 1.2.9-1ubuntu1 | UNKNOWN |
ubuntu | 6.10 | noarch | libstruts1.2-java | < 1.2.9-1ubuntu1 | UNKNOWN |
ubuntu | 7.04 | noarch | libstruts1.2-java | < 1.2.9-1ubuntu1 | UNKNOWN |