Versions (5)
Version DetailsCurrent
Rev: 3 • Aug 22, 2019, 12:00 PMET EXPLOIT Pulse Secure SSL VPN - Arbitrary File Read (CVE-2019-11510)
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Pulse Secure SSL VPN - Arbitrary File Read (CVE-2019-11510)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/dana-na/../dana/html5acc/guacamole/../"; depth:39; fast_pattern; isdataat:10,relative; reference:url,packetstormsecurity.com/files/154176/Pulse-Secure-SSL-VPN-8.1R15.1-8.2-8.3-9.0-Arbitrary-File-Disclosure.html; reference:cve,CVE-2019-11510; classtype:trojan-activity; sid:2027904; rev:3; metadata:affected_product Pulse_Secure, created_at 2019_08_22, signature_severity Major, tag CISA_KEV, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_09_01;)
Aug 22, 2019, 12:00 PM
Sep 1, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
Sep 23, 2025, 9:34 PM
rules/emerging-exploit.rules