CVE-2010-1870
First published: Tue Aug 17 2010(Updated: )
OGNL provides, among other features, extensive expression evaluation capabilities. This vulnerability allows a malicious user to bypass the '#'-usage protection built into the ParametersInterceptor, thus being able to manipulate server side context objects. This behavior was already addressed in [S2-003](https://cwiki.apache.org/confluence/display/WW/S2-003), but it turned out that the resulting fix based on whitelisting acceptable parameter names closed the vulnerability only partially.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.apache.struts:struts2-core | <2.2.1 | 2.2.1 |
| Apache Struts 2 | =2.0.0 | |
| Apache Struts 2 | =2.0.1 | |
| Apache Struts 2 | =2.0.2 | |
| Apache Struts 2 | =2.0.3 | |
| Apache Struts 2 | =2.0.4 | |
| Apache Struts 2 | =2.0.5 | |
| Apache Struts 2 | =2.0.6 | |
| Apache Struts 2 | =2.0.7 | |
| Apache Struts 2 | =2.0.8 | |
| Apache Struts 2 | =2.0.9 | |
| Apache Struts 2 | =2.0.10 | |
| Apache Struts 2 | =2.0.11 | |
| Apache Struts 2 | =2.0.11.1 | |
| Apache Struts 2 | =2.0.11.2 | |
| Apache Struts 2 | =2.0.12 | |
| Apache Struts 2 | =2.0.13 | |
| Apache Struts 2 | =2.0.14 | |
| Apache Struts 2 | =2.1.0 | |
| Apache Struts 2 | =2.1.1 | |
| Apache Struts 2 | =2.1.2 | |
| Apache Struts 2 | =2.1.3 | |
| Apache Struts 2 | =2.1.4 | |
| Apache Struts 2 | =2.1.5 | |
| Apache Struts 2 | =2.1.6 | |
| Apache Struts 2 | =2.1.8 | |
| Apache Struts 2 | =2.1.8.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.exploit-db.com/exploits/14360
- http://confluence.atlassian.com/display/FISHEYE/FishEye+Security+Advisory+2010-06-16
- http://struts.apache.org/2.2.1/docs/s2-005.html
- http://blog.o0o.nu/2010/07/cve-2010-1870-struts2xwork-remote.html
- http://www.securityfocus.com/bid/41592
- http://seclists.org/fulldisclosure/2010/Jul/183
- http://www.osvdb.org/66280
- http://securityreason.com/securityalert/8345
- http://secunia.com/advisories/59110
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140709-struts2
- http://seclists.org/fulldisclosure/2020/Oct/23
- http://packetstormsecurity.com/files/159643/LISTSERV-Maestro-9.0-8-Remote-Code-Execution.html
- https://nvd.nist.gov/vuln/detail/CVE-2010-1870
- https://cwiki.apache.org/confluence/display/WW/S2-003
- https://github.com/advisories/GHSA-x5fc-pgpx-59j5 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2010-1870?
CVE-2010-1870 is considered a high severity vulnerability due to its potential for server-side context object manipulation.
How do I fix CVE-2010-1870?
To resolve CVE-2010-1870, upgrade to Apache Struts version 2.2.1 or later.
What are the affected versions related to CVE-2010-1870?
The affected versions of Apache Struts include 2.0.0, 2.0.1, 2.0.2, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.0.10, 2.0.11, 2.0.12, 2.0.13, 2.0.14, 2.0.11.1, 2.0.11.2, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6, 2.1.8, and 2.1.8.1.
Who is affected by CVE-2010-1870?
Any application that uses the affected versions of Apache Struts may be vulnerable to CVE-2010-1870.
What is the main impact of CVE-2010-1870?
The main impact of CVE-2010-1870 is the ability for an attacker to manipulate server-side objects, potentially leading to further exploitation or unauthorized access.
- collector/github-advisory-latest
- alias/GHSA-x5fc-pgpx-59j5
- alias/CVE-2010-1870
- collector/github-advisory
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-historical
- agent/author
- package-manager/maven
- vendor/apache
- canonical/apache struts 2
- version/apache struts 2/2.0.0
- version/apache struts 2/2.0.1
- version/apache struts 2/2.0.2
- version/apache struts 2/2.0.3
- version/apache struts 2/2.0.4
- version/apache struts 2/2.0.5
- version/apache struts 2/2.0.6
- version/apache struts 2/2.0.7
- version/apache struts 2/2.0.8
- version/apache struts 2/2.0.9
- version/apache struts 2/2.0.10
- version/apache struts 2/2.0.11
- version/apache struts 2/2.0.11.1
- version/apache struts 2/2.0.11.2
- version/apache struts 2/2.0.12
- version/apache struts 2/2.0.13
- version/apache struts 2/2.0.14
- version/apache struts 2/2.1.0
- version/apache struts 2/2.1.1
- version/apache struts 2/2.1.2
- version/apache struts 2/2.1.3
- version/apache struts 2/2.1.4
- version/apache struts 2/2.1.5
- version/apache struts 2/2.1.6
- version/apache struts 2/2.1.8
- version/apache struts 2/2.1.8.1