ET WEB_SERVER Generic Web Server Hashing Collision Attack 2

SID: 2014046Rev: 40 viewsHistory

Sourceet/open

CreatedDecember 30, 2011

UpdatedFebruary 8, 2024

Classificationattempted-dos

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_SERVER Generic Web Server Hashing Collision Attack 2"; flow:established,to_server; http.content_type; content:"multipart/form-data"; nocase; startswith; http.request_body; pcre:"/(\r\nContent-Disposition\x3a\s+form-data\x3b[^\r\n]+\r\n\r\n.+?){250}/Osmi"; reference:cve,2011-3414; reference:url,events.ccc.de/congress/2011/Fahrplan/events/4680.en.html; reference:url,technet.microsoft.com/en-us/security/advisory/2659883; reference:url,blogs.technet.com/b/srd/archive/2011/12/29/asp-net-security-update-is-live.aspx; classtype:attempted-dos; sid:2014046; rev:4; metadata:created_at 2011_12_30, performance_impact Significant, confidence Medium, signature_severity Minor, updated_at 2024_02_08;)

References

cve	2011-3414
url	events.ccc.de/congress/2011/Fahrplan/events/4680.en.html
url	technet.microsoft.com/en-us/security/advisory/2659883
url	blogs.technet.com/b/srd/archive/2011/12/29/asp-net-security-update-is-live.aspx

Metadata

created at2011_12_30

performance impactSignificant

confidenceMedium

signature severityMinor

updated at2024_02_08

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!