CVE-2006-1547
Published: 30 March 2006
ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 with BeanUtils 1.7 allows remote attackers to cause a denial of service via a multipart/form-data encoded form with a parameter name that references the public getMultipartRequestHandler method, which provides further access to elements in the CommonsMultipartRequestHandler implementation and BeanUtils.
Priority
Status
Package | Release | Status |
---|---|---|
libstruts1.2-java Launchpad, Ubuntu, Debian |
dapper |
Released
(1.2.9-1ubuntu1)
|
edgy |
Released
(1.2.9-1ubuntu1)
|
|
feisty |
Released
(1.2.9-1ubuntu1)
|
|
upstream |
Needs triage
|