Versions (2)
Version DetailsCurrent
Rev: 2 • Feb 16, 2016, 12:00 PMET WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2016-0063)
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2016-0063)"; flow:established,to_client; file_data; content:"prototype"; nocase; content:"DOMImplementation"; fast_pattern; pcre:"/^\s*\([^\)]*\)\s*\.\s*prototype\s*\.\s*(?:hasFeature|isPrototypeOf)/Rsi"; reference:cve,2016-0063; classtype:trojan-activity; sid:2022523; rev:2; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2016_02_16, cve CVE_2016_0063, deployment Perimeter, confidence Medium, signature_severity Major, tag Web_Client_Attacks, updated_at 2019_07_26;)
Feb 16, 2016, 12:00 PM
Jul 26, 2019, 12:00 PM
Feb 16, 2016, 12:00 PM
May 31, 2024, 9:00 PM
rules/emerging-web_client.rules