HTTP: Sinapsi Command Injection

This signature detects an attempt to exploit a known vulnerability against Sinapsi application. Successful exploitation could allow an attacker to inject arbitrary commands into the context of the running application.

Extended Description

ping.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog photovoltaic SCADA management server), Sinapsi eSolar, and Sinapsi eSolar DUO with firmware before 2.0.2870_2.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in the ip_dominio parameter.

References

BugTraq: 55872

CVE: CVE-2012-5863

Short Name
HTTP:MISC:SINAPSI-CMD-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2012-5863 Command Injection Sinapsi bid:55872
Release Date
10/22/2014
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3761
False Positive
Unknown
CVSS Score

10.0

Found a potential security threat?