This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects an attempt to leverage an arbitrary file upload vulnerability in ManageEngine DesktopCentral AgentLogUploadServlet which could result in arbitrary code execution.
ManageEngine DesktopCentral is a web-based server for integrated desktop management and mobile device management.
The application is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to properly validate file extensions when uploading through the 'AgentLogUploadServlet'.
An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application.
- ManageEngine DesktopCentral 8.0.0 build 80286 and prior are vulnerable.