IBM.Cognos.Backdoor.Account.Security.Bypass
Description
This indicates an attack attempt against a security-bypass vulnerability in IBM Cognos Server.
The vulnerability is caused by an error when the vulnerable software handles a backdoor account. It allows a remote attacker to execute arbitrary code via deploy a servlet with security-bypass.
Affected Products
IBM Cognos Express 9.0.
Impact
Security Bypass: Remote attackers can bypass security checking of vulnerable systems.
Recommended Actions
Apply the most recent upgrades. Please refer to the vendor's web site:
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2018-10-16 | 13.473 | Sig Added |