Skip to content

Month: March 2017

New attack vector in CVE2017-5638

Yesterday HP research (Link) posted some interesting stuff regarding a new way to exploit vulnerable Struts2 (CVE2017-5638) by injecting malicious payload into filename of Content-Disposition header. This type of payload can be used to avoid rules deployed to catch payloads in Content-Type header.

Again, mitigation is pretty much the same – just upgrade your Struts. Here’s dirty code to check if any of your domains is vulnerable to this.

by Nick Babkin, (c) 2016-2017