Versions (4)
Version DetailsCurrent
Rev: 4 • Jul 30, 2010, 12:00 PMET EXPLOIT Java runtime.exec() call
alert http any $HTTP_PORTS -> $HOME_NET any (msg:"ET EXPLOIT Java runtime.exec() call"; flow:from_server,established; content:"|52 75 6e 74 69 6d 65 3b 01 00 04 65 78 65 63 01 00|"; reference:url,www.mullingsecurity.com; classtype:trojan-activity; sid:2002783; rev:4; metadata:created_at 2010_07_30, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)
Jul 30, 2010, 12:00 PM
Jul 26, 2019, 12:00 PM
Sep 21, 2024, 3:00 AM
Dec 9, 2025, 10:34 PM
rules/emerging-exploit.rules