Signature Detail

Short Name	HTTP:MISC:MUTINY-CMD-INJ
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Mutiny Command Injection
Release Date	2013/12/03
Update Number	2323
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Mutiny Command Injection

This signature detects attempts to exploit a known vulnerability in Mutiny. A successful attack can lead to arbitrary code execution.

Extended Description

Mutiny Standard before 4.5-1.12 allows remote attackers to execute arbitrary commands via the network-interface menu, related to a "command injection vulnerability."

Affected Products

mutiny standard 4.4-1.12
mutiny standard 4.5-1.03
mutiny standard 4.5-1.05
mutiny standard 4.5-1.07
mutiny standard up to 4.5-1.10

References

BugTraq: 56165
CVE: CVE-2012-3001

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Mutiny Command Injection

Extended Description

Affected Products

References