Detect Date | 03/16/2017 | |||||||||||||||||||||||||||||||||
Class | Exploit | |||||||||||||||||||||||||||||||||
Platform | HTTP | |||||||||||||||||||||||||||||||||
Description |
The Jakarta Multipart parser from Apache Struts 2 versions 2.3.X up to 2.3.32, and Apache Struts 2 versions 2.5.X up to 2.5.10.1 incorrectly manages exception handling and error message generation during file uploading attempts, which allows attackers to remotely execute arbitrary commands via purposely created HTTP headers Content-Type, Content-Disposition, or Content-Length. Top 10 countries with most attacked users (% of total attacks)
* Percentage of all unique Kaspersky users worldwide who have been attacked by this malware |
|||||||||||||||||||||||||||||||||
Find out the statistics of the threats spreading in your region |