2017-07-24 10:57 GMT+02:00 Chunduru, Krishnachaithanya
:
> I was referring to the Apache Webserver 2.4.10 running in our environment.
but you still need a Servlet container, e.g. Tomcat or Jetty or other
to run a Struts based app.
> Can you please let me know how to check the current Struts versi
Sent: Monday, July 24, 2017 1:16 PM
To: Struts Users Mailing List
Subject: Re: Apache Struts Vulnerability - CVE-2017-9791
2017-07-24 9:36 GMT+02:00 Chunduru, Krishnachaithanya
:
> I was referring to Apache version we have i.e., 2.4.10.
There is no such version of Struts -> http://struts
2017-07-24 9:36 GMT+02:00 Chunduru, Krishnachaithanya
:
> I was referring to Apache version we have i.e., 2.4.10.
There is no such version of Struts -> http://struts.apache.org/downloads.html
Regards
--
Ćukasz
+ 48 606 323 122 http://www.lenart.org.pl/
-
truts Users Mailing List
Subject: Re: Apache Struts Vulnerability - CVE-2017-9791
2017-07-23 14:20 GMT+02:00 Chunduru, Krishnachaithanya
:
> Can someone please confirm if Apache 2.4.10 is vulnerable to the
> CVE-2017-9791.
I assume you meant 2.5.10 as there is no such version as 2.4.10. And as
2017-07-23 14:20 GMT+02:00 Chunduru, Krishnachaithanya
:
> Can someone please confirm if Apache 2.4.10 is vulnerable to the
> CVE-2017-9791.
I assume you meant 2.5.10 as there is no such version as 2.4.10. And
as stated in the description 2.5.x series isn't affected as it doesn't
ship with the S
Hi All,
Can someone please confirm if Apache 2.4.10 is vulnerable to the CVE-2017-9791.
We came to know that Apache which is having Apache Struts version 2.3.x with
Struts 1 plugin and Struts 1 action is highly vulnerable . If exploited, this
vulnerability would allow a remote code execution a
6 matches
Mail list logo
