HTTP: Ubiquiti Networks AirOS Remote Remote Command Injection
This signature detects attempts to exploit a known vulnerability against Ubiquiti Networks AirOS. A successful attack can lead to arbitrary code execution.
Extended Description
AirOS is prone to a vulnerability that lets attackers execute arbitrary commands in the context of the application. This issue occurs because the application fails to adequately sanitize user-supplied input. Successful attacks can compromise the affected application and possibly the underlying device.
Affected Products
Ubiquiti_networks,_inc. nanostation
Short Name
HTTP:CGI:UBNT-AIROS-CMD-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
AirOS Command Injection Networks Remote Ubiquiti bid:41272
Release Date
07/19/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Ubiquiti_networks,_inc.