HTTP: IBM Proventia Sensor Appliance Remote File Inclusion
This signature detects attempts to exploit a known vulnerability in the IBM Proventia Sensor Appliance. A successful attack can lead to arbitrary code execution.
Extended Description
The IBM Proventia Sensor Appliance is prone to multiple input-validation vulnerabilities, including multiple remote file-include issues and a cross-site scripting issue. An attacker can exploit these issues to steal cookie-based authentication credentials, view files, and to execute arbitrary server-side script code on an affected device in the context of the webserver process. Other attacks are also possible. IBM Proventia Sensor Appliance CX5108 and GX5008 are vulnerable.
Affected Products
Ibm proventia_sensor_appliance
Short Name
HTTP:PHP:IBM-PROVENTIA-RFI
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Appliance CVE-2007-3831 File IBM Inclusion Proventia Remote Sensor bid:24864
Release Date
06/18/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Ibm
CVSS Score
9.3