Compromising Citrix ShareFile on-premise via 7 chained vulnerabilities
Tags
| attack-pattern: | Data Malicious File - T1204.002 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 9b3a9e4c-ef46-441e-bba8-e2801be856af |
| Fingerprint | 312386d327e7c281 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | April 6, 2018, 2:15 p.m. |
| Added to db | Jan. 18, 2023, 8:28 p.m. |
| Last updated | Nov. 17, 2024, 12:50 p.m. |
| Headline | Compromising Citrix ShareFile on-premise via 7 chained vulnerabilities |
| Title | Compromising Citrix ShareFile on-premise via 7 chained vulnerabilities |
| Detected Hints/Tags/Attributes | 42/1/23 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | name.sharefile.eu |
|
| Details | Domain | 8 | out.zip |
|
| Details | Domain | 7 | infile.read |
|
| Details | Domain | 4 | md5.new |
|
| Details | Domain | 1 | redacted.sf-api.eu |
|
| Details | File | 8 | out.zip |
|
| Details | File | 16 | zipfile.zip |
|
| Details | File | 2 | 'out.zip |
|
| Details | File | 1 | 'xxe_oob.xml |
|
| Details | File | 1 | testbestand_fox.tmp |
|
| Details | File | 1 | upload-threaded-3.aspx |
|
| Details | File | 12 | filename.txt |
|
| Details | File | 65 | info.txt |
|
| Details | File | 1 | 'info_modified.txt |
|
| Details | File | 1 | 'info_out.txt |
|
| Details | File | 38 | secret.txt |
|
| Details | File | 8 | error.aspx |
|
| Details | File | 1 | upload-threaded-2.aspx |
|
| Details | md5 | 1 | 2351e6ffe2fc462492d0501414479b95 |
|
| Details | md5 | 1 | becc299a4b9c421ca024dec2b4de7376 |
|
| Details | sha1 | 1 | 866f075b373968fcd2ec057c3a92d4332c8f3060 |
|
| Details | Url | 1 | https://redacted.sf-api.eu |
|
| Details | Url | 1 | https://redacted.sf-api.eu//error.aspx?type=storagecenter |