virus logo Intrusion Prevention

OpenNMS.Java.Object.Unserialization.Remote.Code.Execution

description-logoDescription

This indicates an attempt to exploit a remote Code Execution vulnerability in OpenNMS Linux.
The vulnerability is due to insufficient sanitizing of user supplied inputs while handling maliciously crafted Java serialized object. A remote attacker can exploit this to execute arbitrary code on a targeted system via a crafted Java serialized object.

affected-products-logoAffected Products

OpenNMS Linux x86
OpenNMS Linux x86_64

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 43321
Created Nov 02, 2016
Updated May 15, 2017
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action drop
Active
Affected OS Linux
Affected App Other