The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter.

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - struts: Vulnerability in ActionForm allows unintended remote operations against components on server     memory (CVE-2016-1181)

  - struts: Improper input validation in Validator (CVE-2016-1182)

  - The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to     bypass intended access restrictions via a modified page parameter. (CVE-2015-0899)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

The IBM WebSphere Application Server running on the remote host is version 7.0.0.x through 7.0.0.45, 8.0.0.x through 8.0.0.15, 8.5.0.x prior to 8.5.5.14, or 9.x prior to 9.0.0.8. It is, therefore, affected by a vulnerability in the Apache Struts subcomponent deu to an error in the MultiPageValidator implementation. An unauthenticated, remote attacker can exploit this, using a modified page parameter, to bypass restrictions and launch further attacks on the system.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It was discovered that libstruts1.2-java, a Java framework for MVC applications, contains a bug in its multi-page validation code. This allows input validation to be bypassed, even if MPV is not used directly.

fix CVE-2015-0899

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

ID	Name	Product	Family	Severity
198678	RHEL 5 : struts (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	high
142140	IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.14 / 9.x < 9.0.0.8 Security Bypass (CVE-2015-0899)	Nessus	Web Servers	high
90279	Debian DSA-3536-1 : libstruts1.2-java - security update	Nessus	Debian Local Security Checks	high
85773	Fedora 22 : struts-1.3.10-14.fc22 (2015-14237)	Nessus	Fedora Local Security Checks	high

Detections

Analytics

CVE-2015-0899

high

Tenable Plugins

high

high

high

high