Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:CTS:OPENFIRE-PRIV-ESC
Severity	Minor
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Openfire CVE-2015-7707 Privilege Escalation
Release Date	2019/12/01
Update Number	3230
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Openfire CVE-2015-7707 Privilege Escalation

This signature detects attempts to exploit a known vulnerability against Openfire. A successful attack can lead to elevation of privilege and arbitrary code execution.

Extended Description

Ignite Realtime Openfire 3.10.2 allows remote authenticated users to gain administrator access via the isadmin parameter to user-edit-form.jsp.

Affected Products

Igniterealtime openfire 3.10.2

References

CVE: CVE-2015-7707

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Openfire CVE-2015-7707 Privilege Escalation

Extended Description

Affected Products

References