At a glance:
| ID | 44183 |
| Created | Jul 13, 2017 |
| Updated | Jun 07, 2019 |
| Severity |
|
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | drop |
| Active |
|
| Affected OS | Other |
| Affected App | SCADA |
Legend
| Enabled/Available |
|
| Disabled/Not Avaliable | 
|
Update History
| Date | Version | Detail |
|---|---|---|
| 2019-06-10 | 14.629 | Severity:high:critical |
Refine Search
Intrusion Prevention
Schneider.Electric.Umotion.Runscript.Directory.Traversal
Description
This indicates an attack attempt against a Directory Traversal vulnerability in Schneider Electric U.motion Builder.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. A remote attacker may be able to exploit this to access arbitrary files on the system, via a crafted request.
Affected Products
Schneider Electric U.motion Builder 1.2.1 and prior
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.