SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP SAP servlet authentication bypass attempt
This event is generated when there is a potential bypass to authentication lock Impact: Web Application Attack Details: Ease of Attack:
This event is generated when there is a potential bypass to authentication lock
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE::ATT&CK Framework::Enterprise::Initial Access::Exploit Public-Facing Application
MITRE::ATT&CK Framework::Enterprise::Privilege Escalation::Exploitation for Privilege Escalation
Authentication Bypass
An Authentication Bypass occurs when there is a way to avoid providing user credentials to a system before performing restricted operations on said system.
CVE-2010-5326 |
Loading description
|
Tactic: Impact
Technique: Application or System Exploitation
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org