ET WEB_SERVER 3Com Intelligent Management Center Cross Site Scripting Attempt

SID: 2011145Rev: 60 views

Sourceet/open

CreatedJuly 30, 2010

UpdatedSeptember 14, 2020

Classificationweb-application-attack

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER 3Com Intelligent Management Center Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/imc/login.jsf"; nocase; content:"loginForm"; nocase; content:"javax.faces.ViewState="; nocase; pcre:"/ViewState\x3D.+(script|alert|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange)/i"; reference:url,securitytracker.com/alerts/2010/May/1024022.html; reference:url,support.3com.com/documents/netmgr/imc/3Com_IMC_readme_plat_3.30-SP2.html; reference:url,www.procheckup.com/vulnerability_manager/vulnerabilities/pr10-02; classtype:web-application-attack; sid:2011145; rev:6; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, signature_severity Major, tag XSS, tag Cross_Site_Scripting, updated_at 2020_09_14;)

References

url	securitytracker.com/alerts/2010/May/1024022.html
url	support.3com.com/documents/netmgr/imc/3Com_IMC_readme_plat_3.30-SP2.html
url	www.procheckup.com/vulnerability_manager/vulnerabilities/pr10-02

Metadata

affected productWeb_Server_Applications

attack targetWeb_Server

created at2010_07_30

deploymentDatacenter

signature severityMajor

tagCross_Site_Scripting

updated at2020_09_14

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!