Short Name |
HTTP:IIS:ENUMDSN-ATTEMPT |
---|---|
Severity |
Warning |
Recommended |
No |
Category |
HTTP |
Keywords |
IIS SQL Server xp_enumdsn Attempt |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to use the Microsoft SQL Server xp_enumdsn command.
Attackers may be calling the xp_enumdsn function in order to gain sensitive information in preparation for further attacks. Of course, legitimate users may be calling it in order to retrieve information they require for normal database use.