ET WEB_SERVER Attempt To Access MSSQL xp_enumdsn/xp_enumgroups/xp_ntsec_enumdomains Stored Procedure Via URI

SID: 2009823Rev: 80 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedSeptember 14, 2020
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Attempt To Access MSSQL xp_enumdsn/xp_enumgroups/xp_ntsec_enumdomains Stored Procedure Via URI"; flow:established,to_server; http.uri; content:"EXEC"; nocase; content:"xp_"; nocase; content:"_enum"; nocase; pcre:"/(xp_enumdsn|xp_enumgroups|xp_ntsec_enumdomains)/i"; reference:url,www.mssqlcity.com/Articles/Undoc/UndocExtSP.htm; reference:url,ferruh.mavituna.com/sql-injection-cheatsheet-oku/; reference:url,msdn.microsoft.com/en-us/library/ms173792.aspx; classtype:web-application-attack; sid:2009823; rev:8; metadata:created_at 2010_07_30, signature_severity Minor, updated_at 2020_09_14;)

References

urlwww.mssqlcity.com/Articles/Undoc/UndocExtSP.htm
urlferruh.mavituna.com/sql-injection-cheatsheet-oku/
urlmsdn.microsoft.com/en-us/library/ms173792.aspx

Metadata

created at2010_07_30
signature severityMinor
updated at2020_09_14

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!