SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP Trend Micro Email Encryption Gateway SQL injection attempt
This event is generated when an attacker attempts to exploit an SQL injection vulnerability in Trend Micro Email Encryption Gateway.
Web Application Attack
Rule checks for attempts to exploit an SQL injection vulnerability in Trend Micro Email Encryption Gateway.
Ease of Attack:
What To Look For
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE ATT&CK Framework
For reference, see the MITRE ATT&CK vulnerability types here:
CVE Additional Information
CVE-2018-6230A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.
||Ease of Access||