Imera.Systems.ImeraIEPlugin.ActiveX.Arbitrary.File.Download
Description
This indicates a possible attempt to exploit an Arbitrary File Download vulnerability in Imera Systems ImeraIEPlugin ActiveX control.
The vulnerability can be exploited via modified "DownloadProtocol", "DownloadHost", "DownloadPort" and "DownloadURI" parameters. It may allow remote attackers to download files to arbitrary locations.
Affected Products
Imera Systems ImeraIEPlugin 1.0.2.54
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patches.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |