HTTP: Cisco Collaboration Server ServletEXEC File Upload
This signature detects attempts to exploit the known vulnerability in the ServletEXEC utility packaged with Cisco Collaboration Server versions earlier than 5.0. A successful attack can allow the attacker to upload files and gain access with administrative permissions.
Extended Description
Sun One Application Server is prone to an undisclosed file disclosure vulnerability. This vulnerability allows remote attackers to gain access to the contents of potentially sensitive files, possibly aiding them in further system compromise. Further details are not available at this time. This BID will be updated as more information is made available.
Affected Products
Sun one_application_server
Short Name
HTTP:CISCO:SERVLETEXEC
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2005-1215 Cisco Collaboration File Server ServletEXEC Upload bid:13879
Release Date
08/18/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Sun
CVSS Score
7.5