Apache.Struts.2.FindStaticResource.Directory.Traversal

description-logoDescription

This indicates an attack attempt against a directory-traversal vulnerability in the Apache Struts.
The vulnerability is caused by an error when the vulnerable server handles a specially crafted URI within directory traversal patterns. It allows a remote attacker to disclose or access arbitrary files on the vulnerable server.

affected-products-logoAffected Products

Apache Struts prior to 2.0.12

Impact logoImpact

Information Disclosure
Security Bypass

recomended-action-logoRecommended Actions

Update to version 2.0.12:
http://struts.apache.org/.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)