Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:EXPLOIT-KIT-JAVA-USR-AGENT |
|---|---|
Severity |
Major |
Recommended |
No |
Category |
HTTP |
Keywords |
Java User-Agent Flowbit Set |
Release Date |
2015/10/15 |
Update Number |
2546 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Java User-Agent Flowbit Set
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Extended Description
SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitrary SQL commands via a crafted HTTP request.
Affected Products
- Symantec critical_system_protection 5.2.9
- Symantec data_center_security 6.0.0
References
- CVE: CVE-2014-7289