HTTP: ManageEngine ServiceDesk DownloadSnapshotServlet Directory Traversal
This signature detects attempts to exploit a known vulnerability in ManageEngine ServiceDesk for Microsoft Windows. Successful exploitation results in the disclosure of arbitrary file contents from the target server.
Extended Description
The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the name parameter for the download-snapshot URL. An unauthenticated remote attacker can use this vulnerability to download arbitrary files.
Affected Products
Manageengine servicedesk
Short Name
HTTP:DIR:MANAGEENGINE-DIR-TRAV
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2017-11512 Directory DownloadSnapshotServlet ManageEngine ServiceDesk Traversal bid:101789
Release Date
01/16/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
False Positive
Unknown
Vendors
Manageengine
CVSS Score
5.0