ET WEB_CLIENT Wordpress possible Malicious DNS-Requests - flickr.com.* - Suricata Rule 2013353 (et/open)

ET WEB_CLIENT Wordpress possible Malicious DNS-Requests - flickr.com.*

SID: 2013353Rev: 40 viewsHistory

Sourceet/open

CreatedAugust 4, 2011

UpdatedJune 5, 2023

Classificationweb-application-attack

alert dns [$HOME_NET,$HTTP_SERVERS] any -> any any (msg:"ET WEB_CLIENT Wordpress possible Malicious DNS-Requests - flickr.com.*"; dns.query; content:"flickr.com."; nocase; isdataat:1,relative; pcre:"/(?:^|\.)flickr\.com\./i"; reference:url,web.archive.org/web/20110807204218/http://markmaunder.com/2011/zero-day-vulnerability-in-many-wordpress-themes/; reference:url,web.archive.org/web/20111102155359/blog.sucuri.net/2011/08/timthumb-security-vulnerability-list-of-themes-including-it.html; classtype:web-application-attack; sid:2013353; rev:4; metadata:affected_product Wordpress, affected_product Wordpress_Plugins, attack_target Web_Server, created_at 2011_08_04, deployment Datacenter, deprecation_reason Relevance, performance_impact Low, signature_severity Major, tag Wordpress, updated_at 2023_06_05;)

References

url	web.archive.org/web/20110807204218/http://markmaunder.com/2011/zero-day-vulnerability-in-many-wordpress-themes/
url	web.archive.org/web/20111102155359/blog.sucuri.net/2011/08/timthumb-security-vulnerability-list-of-themes-including-it.html

Metadata

affected productWordpress_Plugins

attack targetWeb_Server

created at2011_08_04

deploymentDatacenter

deprecation reasonRelevance

performance impactLow

signature severityMajor

tagWordpress

updated at2023_06_05

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!