Code: p1502 Severity: Warning
Description: This event is generated when an attempt is made to exploit a known vulnerability on a web server or a web application resident on a web server. Impact: Information gathering and system integrity compromise. This rule generates an event on a request for the util.pl file, part of the CalaCode @mail Webmail system. Some versions of this software are vulnerable to a cross site scripting attack. Corrective: Ensure the system is using an up to date version of the software and has had all vendor supplied patches applied. Check the host logfiles and application logs for signs of compromise.
|
