TimThumb Plugin Remote Code Execution
Schweregrad: : Crítico
Data do informe: 21 julho 2015
Descrição
This rule is a heuristic based rule to detect malicious php code embedded within gif, jpg and png image files. An attacker may use maliciously crafted image file to do remote code execution and take control of the victim's host machine.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1004880
Trend Micro Deep Security DPI Rule Name: 1004880 - Identified Suspicious Image File With Embedded PHP Code
Software infectado e versão:
- Microsoft Windows
- PHP