ET WEB_SERVER HP LaserJet Printer Cross Site Scripting Attempt

SID: 2010919Rev: 60 views

Sourceet/open

CreatedJuly 30, 2010

UpdatedSeptember 14, 2020

Classificationweb-application-attack

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_SERVER HP LaserJet Printer Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/support_param.html/config"; nocase; content:"Admin_Name=&Admin_Phone="; nocase; content:"Product_URL="; nocase; pcre:"/(script|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange).+Apply\x3DApply/i"; reference:url,dsecrg.com/pages/vul/show.php?id=148; reference:cve,2009-2684; classtype:web-application-attack; sid:2010919; rev:6; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, cve CVE_2009_2684, deployment Datacenter, signature_severity Major, tag XSS, tag Cross_Site_Scripting, updated_at 2020_09_14;)

References

url	dsecrg.com/pages/vul/show.php?id=148
cve	2009-2684

Metadata

affected productWeb_Server_Applications

attack targetWeb_Server

created at2010_07_30

cveCVE-2009-2684

deploymentDatacenter

signature severityMajor

tagCross_Site_Scripting

updated at2020_09_14

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!