ET WEB_CLIENT MP4 Embedded in PDF File - Potential Flash Exploit (CVE-2012-0754) - Suricata Rule 2014865 (et/open)

ET WEB_CLIENT MP4 Embedded in PDF File - Potential Flash Exploit (CVE-2012-0754)

SID: 2014865Rev: 40 viewsHistory

Sourceet/open

CreatedJune 7, 2012

UpdatedJune 10, 2022

Classificationbad-unknown

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT MP4 Embedded in PDF File - Potential Flash Exploit (CVE-2012-0754)"; flow:established,to_client; content:"obj"; content:"<<"; within:4; content:"stream"; distance:0; content:"|00 00 00 18 66 74 79 70|mp4"; within:13; reference:cve,2012-0754; reference:url,blog.9bplus.com/observing-the-enemy-cve-2012-0754-pdf-interac; classtype:bad-unknown; sid:2014865; rev:4; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2012_06_07, deployment Perimeter, confidence Medium, signature_severity Major, tag Web_Client_Attacks, tag CISA_KEV, updated_at 2022_06_10;)

References

cve	2012-0754
url	blog.9bplus.com/observing-the-enemy-cve-2012-0754-pdf-interac

Metadata

affected productWeb_Browser_Plugins

attack targetClient_Endpoint

created at2012_06_07

deploymentPerimeter

confidenceMedium

signature severityMajor

tagCISA_KEV

updated at2022_06_10

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!