Security

Reply
Frequent Contributor I

Clearpass and new struts2 Vulnerability ...

Has there been any word if Clearpass is vulnerable to the new attack and if a patch is imminent ?   I'm running   6.6.4.91777, but I believe it was released before the struts2 announcement. (CVE-2017-5638)

 

 

Mike Davis
Network Engineer
University of Delaware
Guru Elite

Re: Clearpass and new struts2 Vulnerability ...

Security advisories are posted here:
http://www.arubanetworks.com/support-services/security-bulletins/

Incident Response Policy: http://www.arubanetworks.com/assets/support/SecurityIncidentResponsePolicy.pdf

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Occasional Contributor II

Re: Clearpass and new struts2 Vulnerability ...

I've confirmed that CPPM 6.6.3 is vulnerable to this expoit.  Using a very simple script, as an unauthenticated user I was able to dump the /etc/passwd file on the appliance.  Testing now to see what else I am able to do.

Occasional Contributor II

Re: Clearpass and new struts2 Vulnerability ...

Clarifing my own words:   "unauthenciated" means unauthenticated to the web server.  In our scenario you still need to at least be authenticated to our guest network.

Moderator

Re: Clearpass and new struts2 Vulnerability ...

Please seehttp://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-002.txt for details.

---
Jon Green, ACMX, CISSP
Security Guy
Guru Elite

Re: Clearpass and new struts2 Vulnerability ...

The hotfixes for ClearPass 6.5.7 and 6.6.4 have been posted to the support site (Aruba Support site) and the software updates portal.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: