Apache Struts Dynamic Method Invocation Remote Code Execution Vulnerability (CVE-2016-3081)

  Severity: HIGH

  DESCRIPTION

A remote code execution vulnerability exits in Apache Struts such that upon successful exploitation a malicious expression can be used to execute arbitrary code on server side when Dynamic Method Invocation is enabled.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1007603