Versions (3)
Version DetailsCurrent
Rev: 5 • Jun 20, 2014, 12:00 PMET EXPLOIT Supermicro BMC Password Disclosure 4
alert http $EXTERNAL_NET any -> $HOME_NET 49152 (msg:"ET EXPLOIT Supermicro BMC Password Disclosure 4"; flow:established,to_server; http.uri; content:"/wsman/simple_auth.passwd"; fast_pattern; reference:url,arstechnica.com/security/2014/06/at-least-32000-servers-broadcast-admin-passwords-in-the-clear-advisory-warns/; classtype:attempted-admin; sid:2018588; rev:5; metadata:created_at 2014_06_20, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_04_30;)
Jun 20, 2014, 12:00 PM
Apr 30, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
Oct 13, 2025, 9:34 PM
rules/emerging-exploit.rules