virus logo Intrusion Prevention

Zend.Server.Java.Bridge.Code.Execution

description-logoDescription

This indicates an attack attempt against a code execution vulnerability in Zend Server Java Bridge.
The vulnerability is caused by an error where the vulnerable software does not require authentication to handle java code within the java virtual machine. It allows a remote attacker to execute arbitrary code via sending crafted data.

affected-products-logoAffected Products

Zend Java Bridge v3.1 component of the Zend Server framework

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply patch, available from the web site.
http://www.zend.com/en/products/server/downloads

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.exploit-db.com/exploits/17078/
ID 26488
Created May 11, 2011
Updated Feb 24, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows
Affected App Other