Apache Struts ClassLoader Manipulation Remote Code Execution Exploit Update

This module exploits a vulnerability in Apache Struts. The specific vulnerability is in the ParametersInterceptor, which allows a direct manipulation of the ClassLoader and as a result an attacker can execute arbitrary Java code in the target machine. This update adds support for Apache Struts 2.3.16, Windows (x86 and x64) and Linux (x64) platforms.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2014-0094
Product Version: 
2014_R2
Released Date: 
Thursday, November 6, 2014 - 00:00