virus logo Intrusion Prevention

HTTP.Request.URI.Directory.Traversal

description-logoDescription

This indicates detection of a directory traversal attack in the HTTP URI.
A directory traversal attack exploits insufficient sanitization of user-supplied file names such that characters representing "traverse to parent directory" are passed through to the file APIs.

affected-products-logoAffected Products

Any unprotected HTTP server is vulnerable.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Monitor the traffic from that network for any suspicious activity.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-10-20 18.182 Sig Added
2021-09-28 18.166 Sig Added
2019-06-20 14.636 Sig Added
2019-06-13 14.632 Sig Added
2019-04-24 14.599 Sig Added

References

47774 44350 44539
ID 10604
Created Aug 10, 2005
Updated Jul 22, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2021-42013 CVE-2021-40960 CVE-2019-20085 CVE-2018-10260 CVE-2018-16288 CVE-2011-0405 CVE-2018-16836 CVE-2018-7171 CVE-2019-17662 CVE-2018-11137 CVE-2001-0308 CVE-2019-6268 CVE-2023-37607
Known Exploited Yes
Exploit Prediction Score 97.4%
Default Action pass
Active
Affected OS Windows, Linux
Affected App Other