MS.SharePoint.Server.ScriptResx.ashx.Directory.Traversal
Description
This indicates an attempt to exploit a Directory Traversal vulnerability in SharePoint Server 2010.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling crafted HTTP requests. A remote attacker can exploit this to gain unauthorized access to sensitive information via a crafted request.
Affected Products
Microsoft SharePoint Server 2010 Service Pack 1
Microsoft SharePoint Foundation 2010 Service Pack 1
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://technet.microsoft.com/en-us/security/bulletin/ms13-024
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |