Intrusion Prevention

Basilic.Diff.PHP.Arbitrary.Command.Execution

Description

This indicates an attack attempt against a Command Execution vulnerability in Basilic.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP request with a crafted URI. It allows a remote attacker to execute command via sending a crafted URI to a vulnerable application.

Affected Products

Basilic 1.5.14

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2012-3399