virus logo Intrusion Prevention

TimeLive.FileDownload.ASPX.Arbitrary.File.Download

description-logoDescription

This indicates a possible attempt to exploit an Arbitrary File Download vulnerability in TimeLive Time and Expense.
The vulnerability is due to the vulnerable application's failure to sufficiently sanitize user-supplied input. It may allow remote attackers to download arbitrary files.

affected-products-logoAffected Products

TimeLive TimeLive Time and Expense 4.1.1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-12-02 16.972
ID 29926
Created Nov 17, 2011
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other