Intrusion Prevention



This indicates detection of a directory traversal attack in the HTTP URI.
A directory traversal attack exploits insufficient sanitization of user-supplied file names such that characters representing "traverse to parent directory" are passed through to the file APIs.

Affected Products

Any unprotected HTTP server is vulnerable.


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Monitor the traffic from that network for any suspicious activity.

CVE References

CVE-2017-10974 CVE-2001-0308