ET WEB_SPECIFIC_APPS HP System Management Homepage Input Validation Cross Site Scripting Attempt

SID: 2010770Rev: 61 views

Sourceet/open

CreatedJuly 30, 2010

UpdatedSeptember 11, 2020

Classificationweb-application-attack

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS HP System Management Homepage Input Validation Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/smhui/getuiinfo"; nocase; content:"JS"; nocase; content:"servercert="; nocase; pcre:"/servercert\x3D.+(script|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange)/i"; reference:url,h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02000727; reference:cve,2009-4185; classtype:web-application-attack; sid:2010770; rev:6; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, cve CVE_2009_4185, deployment Datacenter, signature_severity Major, tag XSS, tag Cross_Site_Scripting, updated_at 2020_09_11;)

References

url	h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02000727
cve	2009-4185

Metadata

affected productWeb_Server_Applications

attack targetWeb_Server

created at2010_07_30

cveCVE-2009-4185

deploymentDatacenter

signature severityMajor

tagCross_Site_Scripting

updated at2020_09_11

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!