ET WEB_SERVER ScriptResource.axd access without t (time) parameter - possible ASP padding-oracle exploit

SID: 2011806Rev: 60 views
History
Sourceet/open
CreatedOctober 13, 2010
UpdatedSeptember 13, 2020
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_SERVER ScriptResource.axd access without t (time) parameter - possible ASP padding-oracle exploit"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"ScriptResource.axd"; nocase; content:!"&t="; nocase; content:!"&amp|3b|t="; nocase; detection_filter:track by_src,count 15,seconds 2; reference:url,netifera.com/research/; reference:url,www.microsoft.com/technet/security/advisory/2416728.mspx; classtype:web-application-attack; sid:2011806; rev:6; metadata:created_at 2010_10_13, signature_severity Major, updated_at 2020_09_13;)

References

urlnetifera.com/research/
urlwww.microsoft.com/technet/security/advisory/2416728.mspx

Metadata

created at2010_10_13
signature severityMajor
updated at2020_09_13

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!