ASPXSpy.Webshell
Description
This indicates a potential .NET ASP webshell upload. A malicious user may use this script to further compromise the targeted host.
Affected Products
N/A
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Configure a Worker Process Identity (WPI) for an application pool.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-10-21 | 16.947 | Name:ASPXSpy. Detection:ASPXSpy. Webshell |
2020-10-21 | 16.947 | Severity:low:medium |
2020-08-12 | 15.904 | Sig Added |
2020-07-27 | 15.894 | Sig Added |