SNS IPS: Signature Alarm

XMLRPC: possible remote code injection

Description

Default
configuration

Profiles	High	Medium	Low	Internet
Action	Block	Block	Pass	Block
Alarm Level	Minor	Minor	Minor	Minor

References

Bugtraq: 14088

Available since

ASQ v3.2.0

Protects

Dolphin "eval()" PHP Code Execution Vulnerability
GNUBoard "g4_path" File Inclusion Vulnerability
NetCat "search_query" PHP Code Execution Vulnerability
TYPO3 Code Execution and Multiple Cross Site Scripting Vulnerabilities
TYPO3 Code Execution and Cross Site Scripting Vulnerabilities
DreamCost Multiple File Inclusion and SQL Injection Vulnerabilities

100 last CVE

CVE-2009-0290

Risk level

Moderate