APP: IBM TeaLeaf Passive Capture Application Module Command Execution
This signature detects an attempt to exploit a known vulnerability against IBM TeaLeaf application. Successful exploitation could allow an attacker to execute arbitrary codes into the context of the running application.
Extended Description
delivery.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x, 8.x through 8.6, 8.7 before FP2, and 8.8 before FP2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the testconn_host parameter.
Affected Products
Ibm tealeaf_cx
Short Name
APP:IBM:TEALEAF-PCA-CMDEXEC
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Application CVE-2013-6719 Capture Command Execution IBM Module Passive TeaLeaf bid:65984
Release Date
10/29/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Ibm
CVSS Score
6.0