Versions (3)
Version DetailsCurrent
Rev: 3 • Oct 25, 2017, 12:00 PMET EXPLOIT Possible Vacron NVR Remote Command Execution
alert http any any -> $HOME_NET any (msg:"ET EXPLOIT Possible Vacron NVR Remote Command Execution"; flow:to_server,established; http.uri; content:"/board.cgi?cmd="; depth:15; reference:url,blogs.securiteam.com/index.php/archives/3445; classtype:attempted-recon; sid:2024915; rev:3; metadata:attack_target IoT, created_at 2017_10_25, deployment Perimeter, confidence Medium, signature_severity Major, updated_at 2020_08_13;)
Oct 25, 2017, 12:00 PM
Aug 13, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-exploit.rules