Signature Detail

Short Name	HTTP:PHP:TIKIWIKI-JHOT
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	TikiWiki Jhot Remote Command Execution
Release Date	2009/09/15
Update Number	1504
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: TikiWiki Jhot Remote Command Execution

This signature detects attempts to exploit a known vulnerability against TikiWiki CRM/Groupware. A successful attack can lead to arbitrary code execution.

Extended Description

TikiWiki is prone to a remote command-execution vulnerability. Attackers can exploit this issue to execute arbitrary system commands with the privileges of the webserver process. TikiWiki 1.9.4 and prior versions are vulnerable to these issues; other versions may also be affected.

Affected Products

Gentoo Linux
TikiWiki Project TikiWiki 1.6.1
TikiWiki Project TikiWiki 1.7.1 .1
TikiWiki Project TikiWiki 1.7.2
TikiWiki Project TikiWiki 1.7.3
TikiWiki Project TikiWiki 1.7.4
TikiWiki Project TikiWiki 1.7.5
TikiWiki Project TikiWiki 1.7.6
TikiWiki Project TikiWiki 1.7.7
TikiWiki Project TikiWiki 1.7.8
TikiWiki Project TikiWiki 1.7.9
TikiWiki Project TikiWiki 1.8.0
TikiWiki Project TikiWiki 1.8.1
TikiWiki Project TikiWiki 1.8.2
TikiWiki Project TikiWiki 1.8.3
TikiWiki Project TikiWiki 1.8.4
TikiWiki Project TikiWiki 1.8.5
TikiWiki Project TikiWiki 1.9.0 -rc1
TikiWiki Project TikiWiki 1.9.0 -rc2
TikiWiki Project TikiWiki 1.9.0 -rc3
TikiWiki Project TikiWiki 1.9.0 -rc3.1
TikiWiki Project TikiWiki 1.9.1
TikiWiki Project TikiWiki 1.9.1 .1
TikiWiki Project TikiWiki 1.9.2
TikiWiki Project TikiWiki 1.9.3 1
TikiWiki Project TikiWiki 1.9.3.2
TikiWiki Project TikiWiki 1.9.4

References

BugTraq: 19819
CVE: CVE-2006-4602

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: TikiWiki Jhot Remote Command Execution

Extended Description

Affected Products

References