HP SiteScope SOAP Call update Remote Code Execution Vulnerability

2015年7月21日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 緊急

概要

HP SiteScope is prone to multiple security-bypass vulnerabilities. Successful exploits may allow attackers to bypass the bypass security restrictions and to perform unauthorized actions such as execution of arbitrary code in the context of the application.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1005233

Trend Micro Deep Security DPI Rule Name: 1005233 - HP SiteScope API Preferences Web Service Update Or Create Request Detected

影響を受けるソフトウェア

HP SiteScope