Versions (4)
Version DetailsCurrent
Rev: 1 • Aug 30, 2022, 12:00 PMET EXPLOIT Realtek eCos RSDK/MSDK Stack-based Buffer Overflow Attempt Inbound (CVE-2022-27255)
alert udp any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET EXPLOIT Realtek eCos RSDK/MSDK Stack-based Buffer Overflow Attempt Inbound (CVE-2022-27255)"; content:"|20|SIP|2f|"; content:"m=audio|20|"; fast_pattern; pcre:"/^\d+\s*[^\r\n]{50,}/R"; reference:url,github.com/infobyte/cve-2022-27255/tree/main/exploits_nexxt; reference:cve,2022-27255; classtype:attempted-admin; sid:2038669; rev:1; metadata:created_at 2022_08_30, cve CVE_2022_27255, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2022_08_30;)
Aug 30, 2022, 12:00 PM
Aug 30, 2022, 12:00 PM
Sep 21, 2024, 3:00 AM
Sep 1, 2025, 8:35 PM
rules/emerging-exploit.rules