NetGain.Systems.EM.settings.upload.filename.Directory.Traversal
Description
This indicates an attack attempt against an Arbitrary File Upload vulnerability in NetGain Systems Enterprise Manager.
The vulnerability is caused by insufficient sanitizing of user-supplied filenames. It may allow remote attackers to upload files to arbitrary locations via a malicious HTTP Post request.
Affected Products
NetGain Systems Enterprise Manager 7.2.730 build 1034.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the web site.
http://www.netgain-systems.com/netgain-enterprise-manager/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-02-15 | 14.554 | Sig Added |