CVE-2014-0094

Publication date 11 March 2014

Last updated 24 July 2024


Ubuntu priority

The ParametersInterceptor in Apache Struts before 2.3.16.2 allows remote attackers to "manipulate" the ClassLoader via the class parameter, which is passed to the getClass method.

Status

Package Ubuntu Release Status
libstruts1.2-java 13.10 saucy
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
10.04 LTS lucid
Not affected