ET EXPLOIT GsecDump executed

SID: 2010783Rev: 30 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedJuly 26, 2019
Classificationsuspicious-filename-detect
alert tcp any any -> $HOME_NET [139,445] (msg:"ET EXPLOIT GsecDump executed"; flow:to_server,established; content:"|67 00 73 00 65 00 63 00 64 00 75 00 6d 00 70 00 2e 00 65 00 78 00 65|"; reference:url,xinn.org/Snort-gsecdump.html; classtype:suspicious-filename-detect; sid:2010783; rev:3; metadata:created_at 2010_07_30, confidence High, signature_severity Major, updated_at 2019_07_26;)

References

urlxinn.org/Snort-gsecdump.html

Metadata

created at2010_07_30
confidenceHigh
signature severityMajor
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!