Microburst.Ustorekeeper.Directory.Traversal
Description
It indicates a directory traversal vulnerability in Microburst uStorekeeper Online Shopping System ustorekeeper.pl program.
Due to insufficient user input validation, a remote attacker can read arbitrary files on a target system by sending it a specially-crafted message.
Affected Products
Microburst uStorekeeper Online Shopping System versions prior to and including 1.8.1
Impact
Attackers can read arbitrary files on the victim system.
Recommended Actions
Apply appropriate patches or upgrade the system to the latest non-vulnerable version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2023-01-10 | 22.472 | Name:Microburst. Ustorekeeper. DirectoryTraversal:Microburst. Ustorekeeper. Directory. Traversal |
2019-04-09 | 14.589 | Default_action:pass:drop |