Description: This event is generated when an attempt is made to exploit an authentication vulnerability in a web server or an application running on that server.
Impact: Information gathering and system integrity compromise. Possible unauthorized administrative access to the server or application.
Corrective: Disallow administrative access from sources external to the protected network. Ensure the system is using an up to date version of the software and has had all vendor supplied patches applied.