This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects Arbitrary file uploads in Novell iManager.
Novell iManager is a web-based management portal for various Novell products.
The application is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. Specifically, this issue affects the 'getMultiPartParameters()' when validating uploaded files.
An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application.
Novell iManager 126.96.36.199 and prior are vulnerable.
- Novell iManager 188.8.131.52 and prior are vulnerable.
Updates are available. Please see the references for details.