SID 1:50780

Report a false positive

Rule Category

POLICY-OTHER --

Alert Message

POLICY-OTHER InduSoft Web Studio DBProcessCall remote connection open attempt

Rule Explanation

This event is generated when there is a potentially unauthenticated remote command 66 sent to an InduSoft Web Studio or InTough Edge HDMI instance. Impact: Potential Corporate Privacy Violation Details: Enable this rule to block all authenticated and unauthenticated remote commands to load locally or remotely stored XDC configuration files. Unauthenticated commands could lead to remote code execution. Ease of Attack:

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2019-6543 CVE-2019-6545

Rule Vulnerability

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2019-6543
 Loading description
CVE-2019-6545
 Loading description