Network IDS : Alert Logic has developed specific IDS signature s to enable for efficient monitoring by the Alert Logic Security Operations Center. Vulnerability Scanning : Alert Logic has developed vulnerability scan coverage to identify vulnerable assets. This exploit has been confirmed by many security researchers and is actively being exploited by attackers. Vulnerability DescriptionĬVE-2019-16759 allows unauthenticated, remote attackers to send specifically crafted HTTP POST requests to vulnerable vBulletin hosts and execute commands.
As updates are made to the article with new information about Alert Logic coverage and mitigation recommendations, you will be alerted by email. To be alerted to updates about this vulnerability, sign in to the Support Center with your Alert Logic product credentials and click FOLLOW at the top of this article. T his article will be updated with new information as Alert Logic continues to investigate this vulnerability. For more information, refer to the Recommendations for Mitigation section in this article. vBulletin has released a patch to mitigate the attack. Exploit code has been released into the public domain, and we have observed active attacks against our customers using this vulnerability.Ĭustomers running versions up to and including 5.5.4 of vBulletin may be affected by this vulnerability.
This vector allows attackers to remotely control victim hosts and execute code, install persistence, and laterally move throughout the network. Alert Logic® is actively researching a n unauthenticated remote code execution vulnerability that has been discovered in vBulletin – CVE-2019-16759.