ET EXPLOIT BMP with invalid bfOffBits

SID: 2002803Rev: 100 viewsHistory

Sourceet/open

CreatedJuly 30, 2010

UpdatedJuly 26, 2019

Classificationattempted-user

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT BMP with invalid bfOffBits"; flow:established,to_client; content:"|0d 0a 0d 0a|BM"; fast_pattern; byte_test:4,>,14,0,relative; content:"|0000000000000000|"; distance:4; within:8; reference:url,www.microsoft.com/technet/security/Bulletin/ms06-005.mspx; reference:cve,2006-0006; reference:bugtraq,16633; classtype:attempted-user; sid:2002803; rev:10; metadata:created_at 2010_07_30, signature_severity Major, updated_at 2019_07_26;)

References

url	www.microsoft.com/technet/security/Bulletin/ms06-005.mspx
cve	2006-0006
bugtraq	16633

Metadata

created at2010_07_30

signature severityMajor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!