CVE-2012-1592

Summary

A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.

Affected Software

VendorProductVersion RangeStatus
libstruts1.2-javalibstruts1.2-java1.2-affected

Weaknesses

  • xsltResult local code execution flaw

ADP Enrichment

CVE Program Container

Additional References

References