Versions (2)
Version DetailsCurrent
Rev: 2 • Oct 9, 2010, 12:00 PMET EXPLOIT Driveby Bredolab - client exploited by acrobat
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET EXPLOIT Driveby Bredolab - client exploited by acrobat"; flow:established,to_server; content:"?reader_version="; http_uri; content:"&exn=CVE-"; http_uri; classtype:trojan-activity; sid:2011797; rev:2; metadata:affected_product Any, attack_target Client_Endpoint, created_at 2010_10_09, deployment Perimeter, signature_severity Major, tag DriveBy, updated_at 2019_07_26;)
Oct 9, 2010, 12:00 PM
Jul 26, 2019, 12:00 PM
Oct 9, 2010, 12:00 PM
May 31, 2024, 9:00 PM
rules/emerging-exploit.rules