ET EXPLOIT MS05-021 Exchange Link State - Possible Attack (2) - Suricata Rule 2001849 (et/open)

ET EXPLOIT MS05-021 Exchange Link State - Possible Attack (2)

SID: 2001849Rev: 70 viewsHistory

Sourceet/open

CreatedJuly 30, 2010

UpdatedJuly 26, 2019

Classificationmisc-activity

alert tcp $EXTERNAL_NET any -> $HOME_NET 691 (msg:"ET EXPLOIT MS05-021 Exchange Link State - Possible Attack (2)"; flow:to_server,established; content:"X-LSA-2"; nocase; reference:cve,CAN-2005-0560; reference:url,isc.sans.org/diary.php?date=2005-04-12; reference:url,www.microsoft.com/technet/security/bulletin/MS05-021.mspx; classtype:misc-activity; sid:2001849; rev:7; metadata:created_at 2010_07_30, confidence Medium, signature_severity Major, updated_at 2019_07_26;)

References

cve	CAN-2005-0560
url	isc.sans.org/diary.php?date=2005-04-12
url	www.microsoft.com/technet/security/bulletin/MS05-021.mspx

Metadata

created at2010_07_30

confidenceMedium

signature severityMajor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!