ET WEB_SERVER IIS 8.3 Filename With Wildcard (Possible File/Dir Bruteforce)
Sourceet/open
CreatedJuly 4, 2012
UpdatedSeptember 17, 2020
Classificationnetwork-scan
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER IIS 8.3 Filename With Wildcard (Possible File/Dir Bruteforce)"; flow:established,to_server; http.uri; content:"~1"; fast_pattern; pcre:"/([\*\?]~1|~1\.?[\*\?]|\/~1\/)/"; reference:url,soroush.secproject.com/downloadable/microsoft_iis_tilde_character_vulnerability_feature.pdf; classtype:network-scan; sid:2015023; rev:5; metadata:created_at 2012_07_04, confidence Medium, signature_severity Minor, updated_at 2020_09_17;)
References
Metadata
created at2012_07_04
confidenceMedium
signature severityMinor
updated at2020_09_17
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!