Intrusion Prevention

Dell.Storage.Manager.EmConfigMigration.Servlet.Path.Traversal

Description

This indicates an attack attempt to exploit a Directory Traversal Vulnerability in Dell Storage Manager.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. A remote attacker can exploit this to disclose arbitrary file on the targeted server, via a crafted request.

Affected Products

Dell Storage Manager prior to 16.3.20

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor:
http://topics-cdn.dell.com/pdf/storage-sc2000_release%20notes24_en-us.pdf

CVE References

CVE-2017-14384