FILE-OTHER -- Snort detected traffic targeting vulnerabilities in a file type that does not require enough rule coverage to have its own category.
FILE-OTHER Multiple Products XML external entity information disclosure attempt
This event is generated when XML external entity information disclosure is attempted. Impact: Web Application Attack Details: An attacker is able to craft a malicious attack using XML files and/or HTML compiled files for any information disclosure attempt on a victim's computer in order to probe a machine's installed software. Ease of Attack: Easy
This rule will alert on any attempts that cause an XML external entity information disclosure attempt.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
Information Leak
Information Leakage happens when an attacker manipulates a system into revealing sensitive information, either through malformed input or by taking advantage of another feature of the system.
CVE-2019-9670 |
Loading description
|
Tactic: Exfiltration
Technique: Automated Exfiltration
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org