CVE-2012-2138

org.apache.sling.servlets.post < 2.1.2 - Denial of Service via @CopyFrom Operation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-2138. PoCs published by IOactive.

AI-analyzed exploit summary This exploit leverages a denial-of-service vulnerability in Apache Sling by sending a crafted HTTP request that exhausts memory resources. The PoC uses a curl command to trigger the vulnerability by manipulating the @CopyFrom parameter.

Description

The @CopyFrom operation in the POST servlet in the org.apache.sling.servlets.post bundle before 2.1.2 in Apache Sling does not prevent attempts to copy an ancestor node to a descendant node, which allows remote attackers to cause a denial of service (infinite loop) via a crafted HTTP request.

Exploits (1)

exploitdb WORKING POC VERIFIED
by IOactive · textdosmultiple
https://www.exploit-db.com/exploits/37487

This exploit leverages a denial-of-service vulnerability in Apache Sling by sending a crafted HTTP request that exhausts memory resources. The PoC uses a curl command to trigger the vulnerability by manipulating the @CopyFrom parameter.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Apache Sling 2.1.0 and prior
Auth required
Prerequisites: Valid credentials for authentication · Network access to the target Apache Sling instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

EPSS 0.3862
EPSS Percentile 97.4%

Details

CWE
CWE-264
Status published
Products (2)
apache/org.apache.sling.servlets.post < 2.1.0
org.apache.sling/org.apache.sling.servlets.post 0 - 2.1.2Maven
Published Jul 09, 2012
Tracked Since Feb 18, 2026