TimThumb Plugin Remote Code Execution
2015年7月21日
危険度: : 緊急
概要
This rule is a heuristic based rule to detect malicious php code embedded within gif, jpg and png image files. An attacker may use maliciously crafted image file to do remote code execution and take control of the victim's host machine.
トレンドマイクロの対策
Apply associated Trend Micro DPI Rules.
対応方法
Trend Micro Deep Security DPI Rule Number: 1004880
Trend Micro Deep Security DPI Rule Name: 1004880 - Identified Suspicious Image File With Embedded PHP Code
影響を受けるソフトウェア
- Microsoft Windows
- PHP