Intrusion Prevention

HTTP.Critical.File.Download

Description

This indicates a possible attempt to exploit a common vulnerability in many web servers.
Some web servers, including many embedded servers, do not properly check file and directory requests. As a result a remote attacker may be able to get critical system files, such as the password file.

Affected Products

Some web servers, including many embedded servers.

Impact

Information disclosure: a remote attacker can get critical system files.

Recommended Actions

Update the software or stop the server.