IBM.Tealeaf.CX.PCA.delivery.php.Command.Injection
Description
This indicates an attack attempt against a Command Injection vulnerability in IBM Tealeaf CX Passive Capture Application.
The vulnerability is caused by a lack of sanitizing of the "testconn_host" parameter that is passed to "delivery.php". An attacker may include shell commands by supplying an injection string via a craft HTTP request.
Affected Products
IBM Tealeaf CX 7.1
IBM Tealeaf CX 7.2
IBM Tealeaf CX 8.0
IBM Tealeaf CX 8.1
IBM Tealeaf CX 8.2
IBM Tealeaf CX 8.3
IBM Tealeaf CX 8.4
IBM Tealeaf CX 8.5
IBM Tealeaf CX 8.6
IBM Tealeaf CX 8.7
IBM Tealeaf CX 8.8
Impact
System Compromise: Remote attacker can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://www-01.ibm.com/support/docview.wss?uid=swg21667630
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |