We have used struts-1.2.9.jar in our project. I found CVE-2014-0114 vulnerability in this jar.
While looking for the possible solutions for these I found that Struts 1.x has had its End-Of-Life announcement one year ago and upgrades are available for it on Linux systems. But my application runs on windows.
Can you please suggest me possible fix/alternates to get rid of this vulnerability.
Thanks in advance!
|thread locked Quote Subscribe||
Jun 20th 2014
7 years ago