Rule History

SID: 2008170 • Source: et/open

Versions (2)

Version DetailsCurrent

Rev: 9 • Jul 30, 2010, 12:00 PM

Message:

ET WEB_CLIENT Microsoft Internet Explorer ieframe.dll Script Injection Vulnerability

Rule:

alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET WEB_CLIENT Microsoft Internet Explorer ieframe.dll Script Injection Vulnerability"; flow:to_server; content:"GET"; http_method; content:"res|3a|"; http_uri; content:"ieframe.dll"; http_uri; content:"acr_error"; pcre:"/(\&lt\x3b).+(\&gt\x3b)/Ui"; reference:bugtraq,28581; classtype:web-application-attack; sid:2008170; rev:9; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2010_07_30, deployment Perimeter, signature_severity Major, tag Web_Client_Attacks, updated_at 2024_06_11;)

Created:

Jul 30, 2010, 12:00 PM

Updated:

Jun 11, 2024, 12:00 PM

DB Created:

Jul 30, 2010, 12:00 PM

DB Updated:

Jun 11, 2024, 10:01 PM

Filename:

rules/emerging-web_client.rules