HTTP.Request.URI.Directory.Traversal
Description
This indicates detection of a directory traversal attack in the HTTP URI.
A directory traversal attack exploits insufficient sanitization of user-supplied file names such that characters representing "traverse to parent directory" are passed through to the file APIs.
Affected Products
Any unprotected HTTP server is vulnerable.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Monitor the traffic from that network for any suspicious activity.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |