The Source Disclosure Attack action deals with the expression of event information pertaining to the attacks directed against web servers that process dynamic pages. The attack tries to access source code that can include installation information, such as user IDs and passwords to access databases. This form of attack can be made by issuing a special URL that the server processes incorrectly, or that makes the server execute some software components that can contain errors or bugs.
|
Information |
Level |
|---|---|
|
Source - User Information |
Secondary |
|
Source - Host Information |
Tertiary |
|
Source - Object Information |
Tertiary |
|
Source - Process Information |
Tertiary |
|
Source - Group Information |
Tertiary |
|
Dest - User Information |
Tertiary |
|
Dest - Host Information |
Primary |
|
Dest - Object Information |
Primary |
|
Dest - Group Information |
Tertiary |
|
Agent - Information |
Primary |
|
Agent - Host Information |
Primary |
|
Event Source - Host Information |
Primary |
|
Event Source - Information |
Tertiary |
|
Event - Information |
Primary |
|
Result - Information |
Primary |
|
Result |
event_result |
event_severity |
|---|---|---|
|
Success |
S |
6 |
|
Failure |
F |
5 |
|
Copyright © 2013 CA.
All rights reserved.
|
|