CVE-2007-4556
https://notcve.org/view.php?id=CVE-2007-4556
Struts support in OpenSymphony XWork before 1.2.3, and 2.x before 2.0.4, as used in WebWork and Apache Struts, recursively evaluates all input as an Object-Graph Navigation Language (OGNL) expression when altSyntax is enabled, which allows remote attackers to cause a denial of service (infinite loop) or execute arbitrary code via form input beginning with a "%{" sequence and ending with a "}" character. Struts apoyado en OpenSymphony XWork anterior a 1.2.3, y 2.x anterior a 2.0.4, tal y como se utiliza en WebWork y Apache Struts, recursivamente evalua todas las entradas como una expresión Object-Graph Navigation Language (OGNL) cuando altSyntax está activado, lo cual permite a atacantes remotos provocar denegación de servicio (bucle infinito) o ejecutar código de su elección a través de un formulario de entradad comenzando con una secuencia "%{" y finalizando con un caracter "}". • http://forums.opensymphony.com/ann.jspa?annID=54 http://issues.apache.org/struts/browse/WW-2030 http://jira.opensymphony.com/browse/XW-544 http://jira.opensymphony.com/secure/ReleaseNote.jspa?projectId=10050&styleName=Html&version=21701 http://jira.opensymphony.com/secure/ReleaseNote.jspa?projectId=10050&styleName=Html&version=21706 http://osvdb.org/37072 http://secunia.com/advisories/26681 http://secunia.com/advisories/26693 http://secunia.com/advisories/26694 http://struts.apache.org/2 •