Intrusion Prevention

LANDesk.Management.Suite.Remote.File.Inclusion

Description

This indicates an attack attempt against a remote File Inclusion vulnerability in LANDesk Management Suite.
The vulnerability is due to insufficient validation of user supplied data. A remote attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary script code within context of the target users' browser.

Affected Products

LANDesk Management Suite prior to 9.6

Impact

System Compromise: Remote attackers can execute arbitrary script code within the context of the target user's browser

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue

CVE References

CVE-2014-5362