ImageMagick 'ephemeral' Pseudo Protocol File Deletion Vulnerability (CVE-2016-3715)

2016年8月24日

• Print
• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  危険度: 緊急

---

  概要

It is possible to delete arbitrary files on a web server by using ImageMagick's 'ephemeral' pseudo protocol, which deletes files after reading.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1007610