HP SiteScope SOAP Call getFileInternal Remote Code Execution Vulnerability
Schweregrad: : Crítico
Data do informe: 21 julho 2015
Descrição
HP SiteScope is prone to multiple security-bypass vulnerabilities. Successful exploits may allow attackers to bypass the bypass security restrictions and to perform unauthorized actions such as execution of arbitrary code in the context of the application.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1005257
Trend Micro Deep Security DPI Rule Name: 1005257 - HP SiteScope APISiteScopeImpl Web Service 'getFileInternal' Or 'getSiteScopeConfiguration' Request Detected
Software infectado e versão:
- HP SiteScope