Intrusion PreventionTrend.Micro.SMS.Standalone.Directory.Traversal
Description
This indicates an attack attempt to exploit a Directory Traversal Vulnerability in Smart Protection Server (Standalone).
A remote, authenticated attacker could exploit this vulnerability by uploading a crafted JSON file to a vulnerable server. Successful exploitation could result in arbitrary code execution in the security context of the target application.
Affected Products
Trend Micro Smart Protection Server (Standalone) version 3.2 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://success.trendmicro.com/solution/1118992
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-08-01 | 25.612 | Name:TrendMicro. SMS. Standalone. Directory. Traversal:Trend. Micro. SMS. Standalone. Directory. Traversal |
| 2019-10-23 | 14.709 | Default_action:pass:drop |
| 2019-09-25 | 14.694 |
References
1118992| ID | 48378 |
| Created | Sep 25, 2019 |
| Updated | Jul 31, 2023 |
| Risk |
|
| CVE ID | CVE-2017-14095 |
| Exploit Prediction Score | 0.62% |
| Default Action | drop |
| Active | |
| Affected OS | Linux |
| Affected App | Other |