Signature Detail

Short Name	APP:MISC:HP-SITESCOPE-CE
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	HP SiteScope issueSiebelCmd SOAP Request Handling
Release Date	2014/01/14
Update Number	2333
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: HP SiteScope issueSiebelCmd SOAP Request Handling

This signature detects attempts to exploit a known vulnerability against HP SiteScope. A successful attack can lead to arbitrary code execution.

Extended Description

The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x before 11.22 allows remote attackers to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.

Affected Products

hp sitescope 10.11
hp sitescope 10.13
hp sitescope 11.01
hp sitescope 11.1
hp sitescope 11.10
hp sitescope 11.11
hp sitescope 11.12
hp sitescope 11.20
hp sitescope 11.21

References

CVE: CVE-2013-4835

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: HP SiteScope issueSiebelCmd SOAP Request Handling

Extended Description

Affected Products

References