Release DateMar 09, 2010 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a remote command execution vulnerability in Apache Tomcat server.A vulnerability has been reported in Apache Tomcat server that may allow an attacker to execute shell commands on a vulnerable system. This is possible because the user input filters fail to properly sanitize the command passed to shell.jsp application installed on an Apache Tomcat server. An attacker may include shell commands by supplying an crafted url. |
Affected ProductsApache Tomcat server |
Recommended ActionsCurrent we are not aware of any vendor supplied patch for this issue. |
Coverage IPS
VCM |
