HTTP: IBM Tivoli Provisioning Manager Express ActiveX
This signature detects attempts to use unsafe ActiveX controls in the IBM Tivoli Provisioning Manager Express Component. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
IBM Tivoli Provisioning Manager Express for Software Distribution is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or modify data such as the SHA1 160 bits encrypted admin password and update account rights, or exploit vulnerabilities in the underlying database. IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 is vulnerable.
Affected Products
Ibm tivoli_provisioning_manager_express_for_software_distribution
Short Name
HTTP:STC:ACTIVEX:IBM-TIVOLI
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX CVE-2012-0198 Express IBM Manager Provisioning Tivoli bid:52248 bid:52252
Release Date
04/09/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Ibm
CVSS Score
9.3