Welcome to WebmasterWorld Guest from 54.156.92.140

Forum Moderators: Ocean10000 & incrediBILL & phranque

latest Apache struts security issue

     
2:48 pm on Mar 9, 2017 (gmt 0)

New User

joined:Mar 9, 2017
posts: 2
votes: 0


We don't run Snort, so is there a way to block cmd.exe in a header with Apache 2.2 (I know we are on IBM HTTP Server, which is based on 2.2)?

[isc.sans.edu...]
1:40 pm on Mar 28, 2017 (gmt 0)

New User

joined:Mar 9, 2017
posts: 2
votes: 0


Well,I think

RewriteCond "%{Content-Type}" "*.cmd.*"
RewriteRule .* - [F]
2:24 pm on Mar 28, 2017 (gmt 0)

Administrator from GB 

WebmasterWorld Administrator engine is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:May 9, 2000
posts:24342
votes: 556


Was it this one? [webmasterworld.com...]
11:32 pm on Mar 29, 2017 (gmt 0)

Administrator

WebmasterWorld Administrator phranque is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Aug 10, 2004
posts:10887
votes: 72


Was it this one?

yes, that's the same exploit.

there are additional solutions/workarounds mentioned in the apache.org article referenced in that other thread.