Versions (3)
Version DetailsCurrent
Rev: 7 • Oct 17, 2012, 12:00 PMET DELETED Adobe Flash Vuln (CVE-2012-1535 Uncompressed) Exploit Specific
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET DELETED Adobe Flash Vuln (CVE-2012-1535 Uncompressed) Exploit Specific"; flow:from_server,established; flowbits:isset,OLE.CompoundFile; file_data; content:"FWS"; content:"kern"; distance:0; flowbits:set,Ole.Flash.kernpresent; flowbits:noalert; classtype:trojan-activity; sid:2015809; rev:7; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2012_10_17, deployment Perimeter, signature_severity Major, tag Web_Client_Attacks, tag CISA_KEV, updated_at 2022_06_10;)
Oct 17, 2012, 12:00 PM
Jun 10, 2022, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-deleted.rules