Apache.Tomcat.Shell.JSP.Command.Stager.Detection
Description
This indicates an attack attempt against a remote command execution vulnerability in Apache Tomcat server.
A vulnerability has been reported in Apache Tomcat server that may allow an attacker to execute shell commands on a vulnerable system. This is possible because the user input filters fail to properly sanitize the command passed to shell.jsp application installed on an Apache Tomcat server. An attacker may include shell commands by supplying an crafted url.
Affected Products
Apache Tomcat server
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Current we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |