This problem is applicable to the LS version of WEBppliance Pro or Basic, not LH. You have an LS WEBppliance Pro/Basic if you have the following rpm installed:
You can determine this by running the following command: rpm -qa | grep ensim-appliance
WEBppliance Pro/Basic 3.5.20-20 or less has a vulnerability that allows any remote attacker to restart the WEBppliance Administration GUI. This does not affect the server or any of its services. This bug will be fixed in an upcoming security errata.
You can prevent this problem manually by adding a RewriteRule to the webppliance apache configuration. Do this the following way:
- Create a file to contain the rewrite rule
- Add the the following lines:
RedirectMatch ^/webhost/rollout/view_setupC?$ https://IPADDRESS:19638/webhost/rollout/
Replace IPADDRESS with the IP address of your server. For example 'https://10.10.10.10:19638/webhost/rollout/'
- Restart webppliance
service webppliance restart
Notes: Workaround suggested by "Mouse"