ET EXPLOIT Compressed Adobe Flash File Embedded in XLS FILE Caution - Could be Exploit - Suricata Rule 2012503 (et/open)

ET EXPLOIT Compressed Adobe Flash File Embedded in XLS FILE Caution - Could be Exploit

SID: 2012503Rev: 50 viewsHistory

Sourceet/open

CreatedMarch 15, 2011

UpdatedJuly 26, 2019

Classificationattempted-user

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Compressed Adobe Flash File Embedded in XLS FILE Caution - Could be Exploit"; flow:established,from_server; file_data; content:"|0D 0A 0D 0A D0 CF 11 E0 A1 B1 1A E1|"; content:"|45 57 73 09|"; distance:0; reference:url,blogs.adobe.com/asset/2011/03/background-on-apsa11-01-patch-schedule.html; reference:url,bugix-security.blogspot.com/2011/03/cve-2011-0609-adobe-flash-player.html; reference:bid,46860; reference:cve,2011-0609; classtype:attempted-user; sid:2012503; rev:5; metadata:created_at 2011_03_15, confidence Medium, signature_severity Major, updated_at 2019_07_26;)

References

url	blogs.adobe.com/asset/2011/03/background-on-apsa11-01-patch-schedule.html
url	bugix-security.blogspot.com/2011/03/cve-2011-0609-adobe-flash-player.html
bid	46860
cve	2011-0609

Metadata

created at2011_03_15

confidenceMedium

signature severityMajor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!