CVE-2016-1182: Input Validation
First published: Tue Jun 07 2016(Updated: )
ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct cross-site scripting (XSS) attacks or cause a denial of service via crafted input, a related issue to CVE-2015-0899.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/libstruts1.2-java | ||
| Apache Struts 2 | =1.0 | |
| Apache Struts 2 | =1.0-beta1 | |
| Apache Struts 2 | =1.0-beta2 | |
| Apache Struts 2 | =1.0-beta3 | |
| Apache Struts 2 | =1.0.1 | |
| Apache Struts 2 | =1.0.2 | |
| Apache Struts 2 | =1.1 | |
| Apache Struts 2 | =1.1-b1 | |
| Apache Struts 2 | =1.1-b2 | |
| Apache Struts 2 | =1.1-b3 | |
| Apache Struts 2 | =1.1-rc1 | |
| Apache Struts 2 | =1.1-rc2 | |
| Apache Struts 2 | =1.2.0 | |
| Apache Struts 2 | =1.2.1 | |
| Apache Struts 2 | =1.2.2 | |
| Apache Struts 2 | =1.2.3 | |
| Apache Struts 2 | =1.2.4 | |
| Apache Struts 2 | =1.2.5 | |
| Apache Struts 2 | =1.2.6 | |
| Apache Struts 2 | =1.2.7 | |
| Apache Struts 2 | =1.2.8 | |
| Apache Struts 2 | =1.2.9 | |
| Apache Struts 2 | =1.3.5 | |
| Apache Struts 2 | =1.3.6 | |
| Apache Struts 2 | =1.3.7 | |
| Apache Struts 2 | =1.3.8 | |
| Apache Struts 2 | =1.3.9 | |
| Apache Struts 2 | =1.3.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://jvn.jp/en/jp/JVN65044642/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1343541
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1343542
- https://access.redhat.com/security/cve/CVE-2015-0899
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0899
- https://brewweb.engineering.redhat.com/brew/buildinfo?buildID=356255
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1343540#c12
- https://access.redhat.com/security/updates/classification/
- https://access.redhat.com/support/policy/updates/errata/
- https://bugzilla.redhat.com/show_bug.cgi?id=1343540
- http://jvn.jp/en/jp/JVN65044642/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2016-000097
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.securityfocus.com/bid/91067
- http://www.securityfocus.com/bid/91787
- http://www.securitytracker.com/id/1036056
- https://github.com/kawasima/struts1-forever/commit/eda3a79907ed8fcb0387a0496d0cb14332f250e8
- https://security-tracker.debian.org/tracker/CVE-2016-1182
- https://security.netapp.com/advisory/ntap-20180629-0006/
- https://www.oracle.com/security-alerts/cpujan2020.html
- https://www.oracle.com/security-alerts/cpujul2020.html
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
- https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
- https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
Frequently Asked Questions
What is the severity of CVE-2016-1182?
CVE-2016-1182 is considered to have a moderate severity rating due to its potential for causing cross-site scripting (XSS) attacks and denial of service.
How do I fix CVE-2016-1182?
To fix CVE-2016-1182, upgrade to a version of Apache Struts that is later than 1.3.10 where the issue has been resolved.
What types of attacks can be conducted with CVE-2016-1182?
CVE-2016-1182 allows attackers to conduct cross-site scripting (XSS) attacks or cause denial of service via crafted input.
Which versions of Apache Struts are affected by CVE-2016-1182?
CVE-2016-1182 affects Apache Struts versions from 1.0 through 1.3.10.
Is CVE-2016-1182 related to any other vulnerabilities?
Yes, CVE-2016-1182 is related to CVE-2015-0899, as they both involve similar issues of input validation.
- agent/type
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-1182
- agent/weakness
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/apache
- canonical/apache struts 2
- version/apache struts 2/1.0
- version/apache struts 2/1.0-beta1
- version/apache struts 2/1.0-beta2
- version/apache struts 2/1.0-beta3
- version/apache struts 2/1.0.1
- version/apache struts 2/1.0.2
- version/apache struts 2/1.1
- version/apache struts 2/1.1-b1
- version/apache struts 2/1.1-b2
- version/apache struts 2/1.1-b3
- version/apache struts 2/1.1-rc1
- version/apache struts 2/1.1-rc2
- version/apache struts 2/1.2.0
- version/apache struts 2/1.2.1
- version/apache struts 2/1.2.2
- version/apache struts 2/1.2.3
- version/apache struts 2/1.2.4
- version/apache struts 2/1.2.5
- version/apache struts 2/1.2.6
- version/apache struts 2/1.2.7
- version/apache struts 2/1.2.8
- version/apache struts 2/1.2.9
- version/apache struts 2/1.3.5
- version/apache struts 2/1.3.6
- version/apache struts 2/1.3.7
- version/apache struts 2/1.3.8
- version/apache struts 2/1.3.9
- version/apache struts 2/1.3.10