Intrusion Prevention

HTTP.Request.URI.Directory.Traversal

Description

This indicates detection of a directory traversal attack in the HTTP URI.
A directory traversal attack exploits insufficient sanitization of user-supplied file names such that characters representing "traverse to parent directory" are passed through to the file APIs.

Affected Products

Any unprotected HTTP server is vulnerable.

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Monitor the traffic from that network for any suspicious activity.