ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 with BeanUtils 1.7 allows remote attackers to cause a denial of service via a multipart/form-data encoded form with a parameter name that references the public getMultipartRequestHandler method, which provides further access to elements in the CommonsMultipartRequestHandler implementation and BeanUtils.
History

Tue, 13 Aug 2024 23:15:00 +0000

Type Values Removed Values Added
References

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2006-03-30T22:00:00

Updated: 2024-08-07T17:19:48.247Z

Reserved: 2006-03-30T00:00:00

Link: CVE-2006-1547

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2006-03-30T22:02:00.000

Modified: 2024-07-24T16:47:20.377

Link: CVE-2006-1547

cve-icon Redhat

Severity : Moderate

Publid Date: 2006-03-22T00:00:00Z

Links: CVE-2006-1547 - Bugzilla