Short Name |
APP:WEBMOD-AUTH.W-INFO-DISC |
---|---|
Severity |
Medium |
Recommended |
No |
Category |
APP |
Keywords |
WebMod AUTH.W Information Disclosure |
Release Date |
2012/11/28 |
Update Number |
2206 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
This signature detects attempts to exploit a known vulnerability against WebMod version 0.48. A successful attack can lead to unauthorized information disclosure. This is an old issue and might not be applicable to latest versions of WebMod.
WebMod is prone to multiple remote security vulnerabilities, including a directory-traversal issue, a stack-based buffer-overflow issue, multiple memory-corruption issues, and an information-disclosure issue. Attackers can exploit these issues to execute arbitrary code with the privileges of the user running the affected application, obtain sensitive information to aid in further attacks, or cause denial-of-service conditions. WebMod 0.48 is vulnerable; other versions may also be affected.