virus logo Intrusion Prevention

AjaXplorer.checkInstall.Remote.Command.Execution

description-logoDescription

This indicates an attack attempt against a remote Code Execution vulnerability in AjaXplorer.
The vulnerability is due to how the filters for user inputs fail to properly sanitize the "Configdir" parameter value that is passed to "awstats.pl". An attacker may include arbitrary shell commands by supplying an injection string through the URL.

affected-products-logoAffected Products

AjaXplorer version older than 2.6

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems

recomended-action-logoRecommended Actions

Update to latest version available from the website.
http://ajaxplorer.info/download/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 33493
Created Oct 31, 2012
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app