Auktion.CGI.Directory.Traversal
Description
It indicates a directory traversal vulnerability in HIS Software Auktion.
Due to inadequate input sanitization, a remote attacker can read arbitrary files and possibly execute commands on a target system by sending it a specially-crafted message.
Affected Products
Any unprotected HIS Auktion 1.62 is vulnerable.
Impact
Attackers can read arbitrary files or even execute arbitrary commands on the victim system.
Recommended Actions
Apply appropriate patches or upgrade the software to the latest non-vulnerable version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2018-11-20 | 13.494 | Default_action:pass:drop |