HP SiteScope SOAP Call getFileInternal Remote Code Execution Vulnerability
Gravità: : Critico
Data notifica: 21 luglio 2015
Descrizione
HP SiteScope is prone to multiple security-bypass vulnerabilities. Successful exploits may allow attackers to bypass the bypass security restrictions and to perform unauthorized actions such as execution of arbitrary code in the context of the application.
Informazioni esposizione:
Apply associated Trend Micro DPI Rules.
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1005257
Trend Micro Deep Security DPI Rule Name: 1005257 - HP SiteScope APISiteScopeImpl Web Service 'getFileInternal' Or 'getSiteScopeConfiguration' Request Detected
Software e versione interessati:
- HP SiteScope