virus logo Intrusion Prevention

Apache.Tomcat.Shell.JSP.Command.Stager.Detection

description-logoDescription

This indicates an attack attempt against a remote command execution vulnerability in Apache Tomcat server.
A vulnerability has been reported in Apache Tomcat server that may allow an attacker to execute shell commands on a vulnerable system. This is possible because the user input filters fail to properly sanitize the command passed to shell.jsp application installed on an Apache Tomcat server. An attacker may include shell commands by supplying an crafted url.

affected-products-logoAffected Products

Apache Tomcat server

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Current we are not aware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 18233
Created Mar 09, 2010
Updated Jul 19, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux
Affected App Apache