Intrusion Prevention

MS.IIS.Command.Shell.SQL.Injection

Description

It indicates a potential SQL injection attack via xp_cmdshell access.

Some web servers may be exposed to certain SQL injection attacks that allow attackers to compromise a vulnerable database by sending it specially-crafted URLs.

Affected Products

Any unprotected web server that does not properly sanitize user input on possible SQL injection is vulnerable.

Impact

Attackers can execute SQL commands and compromise the database on the victim system.

Recommended Actions

Apply appropriate patches or Upgrade the system to the latest non-vulnerable
version.

Coverage

IPS (Regular DB)
IPS (Extended DB)

ID	11771
Created	Mar 22, 2006
Updated	Dec 05, 2016
Risk
CVE ID	CVE-2005-4149
Exploit Prediction Score	1.04%
Default Action	drop
Active
Affected OS	Windows
Affected App	IIS

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

MS.IIS.Command.Shell.SQL.Injection

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

MS.IIS.Command.Shell.SQL.Injection

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Threat Intelligence
Center