Versions (3)
Version DetailsCurrent
Rev: 3 • Jun 1, 2016, 12:00 PMET WEB_SERVER Possible CVE-2016-5118 Exploit SVG attempt M2
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Possible CVE-2016-5118 Exploit SVG attempt M2"; flow:established,to_server; http.request_body; content:"<svg"; nocase; content:"|78 6c 69 6e 6b 3a 68 72 65 66 3d 27 7c|"; nocase; reference:url,seclists.org/oss-sec/2016/q2/432; reference:cve,2016-5118; classtype:trojan-activity; sid:2022847; rev:3; metadata:created_at 2016_06_01, cve CVE_2016_5118, confidence Medium, signature_severity Major, updated_at 2020_07_14;)
Jun 1, 2016, 12:00 PM
Jul 14, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-web_server.rules