Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:MISC:GCM-CVE-2014-3085-RCE
Severity	Major
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	IBM GCM CVE-2014-3085 Remote Code Execution
Release Date	2017/04/13
Update Number	2864
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: IBM GCM CVE-2014-3085 Remote Code Execution

This signature detects attempts to exploit a known vulnerability against IBM GCM. A successful attack can lead to arbitrary code execution.

Extended Description

systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the lpres parameter.

Affected Products

Ibm global_console_manager_16_firmware 1.20.0.22575
Ibm global_console_manager_32_firmware 1.20.0.22575

References

CVE: CVE-2014-3085

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: IBM GCM CVE-2014-3085 Remote Code Execution

Extended Description

Affected Products

References