Intrusion Prevention

Lexmark.Markvision.GfdFileUploadServlet.Directory.Traversal

Description

This indicates an attack attempt against a Directory Traversal vulnerability in Lexmark MarkVision.
The vulnerability is due to insufficient sanitizing of user supplied inputs when handling a crafted HTTP packet. It allows a remote attacker to create files in the affected machine and execute arbitrary code in the vulnerable machine via crafted requests.

Affected Products

Lexmark MarkVision Enterprise prior to v2.1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Detail
2019-11-22	15.729	Name:Lexmark. MarkVision. GfdFileUploadServlet. Directory. Traversal:Lexmark. Markvision. GfdFileUploadServlet. Directory. Traversal
2019-01-03	13.517	Sig Added

ID	39905
Created	Jan 23, 2015
Updated	Jan 17, 2022
Risk
CVE ID	CVE-2014-8741
Exploit Prediction Score	96.98%
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	Other

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

Lexmark.Markvision.GfdFileUploadServlet.Directory.Traversal

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Version Updates

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

Lexmark.Markvision.GfdFileUploadServlet.Directory.Traversal

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Version Updates

Threat Intelligence
Center