virus logo Intrusion Prevention

Eaton.Network.Shutdown.Module.Remote.PHP.Code.Injection

description-logoDescription

This indicates an attack attempt against a PHP Code Injection vulnerability in Eaton Network Shutdown Module.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP request with a crafted URI. It allows a remote attacker to execute php code via sending a crafted URI to a vulnerable application.

affected-products-logoAffected Products

Eaton MGE Network Shutdown Module 3.x

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 34056
Created Dec 20, 2012
Updated Sep 23, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux
Affected App Other