1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: AjaXplorer Remote Command Injection

Attack: AjaXplorer Remote Command Injection

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a command injection vulnerability in AjaXplorer.

Additional Information

AjaXplorer is a remote file management application.

The application is prone to the following vulnerabilities:

1. A command injection vulnerability because it fails to adequately sanitize user-supplied input data.

2. A local file disclosure vulnerability because it fails to adequately sanitize user-supplied input data.

Attackers can exploit this issue to execute arbitrary commands within the context of the affected application and to obtain potentially sensitive information from local files on computers running the vulnerable application. This may aid in further attacks.

Affected

  • Versions prior to AjaXplorer 2.6 are vulnerable

Response


Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube