POLICY-OTHER --
POLICY-OTHER InduSoft Web Studio MTCheckFileFunctionsTimeout remote code execution attempt
This event is generated when there is an attempt to execute an un-sanitized user-supplied file name outside `\bin\` from a potentially unauthenticated source. Impact: Base Score: 9.8 CRITICAL Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (V3.0 legend) Impact Score: 5.9 Exploitability Score: 3.9 Confidentiality (C): High Integrity (I): High Availability (A): High Details: Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-17914 |
Loading description
|