Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:MISC:EKTRON-CVE-2018-12596
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Ektron CMS CVE-2018-12596 IAC
Release Date	2019/09/17
Update Number	3208
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Ektron CMS CVE-2018-12596 IAC

This signature detects attempts to exploit a known vulnerability against Ektron CMS. A successful attack can lead to security bypass.

Extended Description

Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attackers to call aspx pages via the "activateuser.aspx" page, even if a page is located under the /WorkArea/ path, which is forbidden (normally available exclusively for local admins).

Affected Products

Episerver ektron_cms 9.00
Episerver ektron_cms 9.10
Episerver ektron_cms 9.20

References

CVE: CVE-2018-12596

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Ektron CMS CVE-2018-12596 IAC

Extended Description

Affected Products

References