BlueCoat.CAS.ReportEmail.Remote.Command.Injection
Description
This indicates an attack attempt to exploit a Remote Command Injection vulnerability in BlueCoat ASG and CA web-based management consoles.
The vulnerability is due to improper validation of HTTP request parameters in the application. A remote attacker may be able to exploit this to execute arbitrary command within the context of the process, via a crafted HTTP request.
Affected Products
ASG 6.6.5.4 and prior
CA 1.3.7.4 and priro
Impact
System Compromise: Remote attackers can execute arbitrary command execution under the security context of the root user.
Recommended Actions
Apply the latest patch from the vendor.
https://www.symantec.com/security-center/network-protection-security-advisories/SA138
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |