Adobe.RoboHelp.Server.fileName.Directory.Traversal
Description
This indicates an attack attempt to exploit a Directory Traversal Vulnerability in Adobe Systems RoboHelp Server.
This vulnerability is caused by input validation flaw when processing fileName parameter. A remote authenticated attacker can exploit this vulnerability by sending crafted messages to the server. Successful exploitation could achieve arbitrary code execution with privileges of SYSTEM.
Affected Products
Adobe Systems RoboHelp Server 2020.0.1 and earlier
Adobe Systems RoboHelp Server 11 update 2 and earlier
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/robohelp-server/apsb21-87.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |