ET EXPLOIT Java Exploit Attempt Request for hostile binary

SID: 2012644Rev: 40 views
History
Sourceet/open
CreatedApril 6, 2011
UpdatedFebruary 6, 2024
Classificationtrojan-activity
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET EXPLOIT Java Exploit Attempt Request for hostile binary"; flow:established,to_server; http.uri; content:".php?height="; content:"&sid="; content:"&width="; pcre:"/\/[a-z0-9]{30,}\.php\?height=\d+&sid=\d+&width=[a-z0-9]+&/"; http.user_agent; content:"Java/"; classtype:trojan-activity; sid:2012644; rev:4; metadata:created_at 2011_04_06, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_02_06;)

Metadata

created at2011_04_06
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_02_06

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!