ET EXPLOIT Apache Struts Possible OGNL Java Exec in client body

SID: 2016957Rev: 43 views
History
Sourceet/open
CreatedJune 1, 2013
UpdatedApril 24, 2020
Classificationattempted-user
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET EXPLOIT Apache Struts Possible OGNL Java Exec in client body"; flow:to_server,established; http.request_body; content:"java.lang.Runtime@getRuntime().exec("; nocase; reference:url,struts.apache.org/development/2.x/docs/s2-013.html; classtype:attempted-user; sid:2016957; rev:4; metadata:created_at 2013_06_01, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_04_24;)

References

urlstruts.apache.org/development/2.x/docs/s2-013.html

Metadata

created at2013_06_01
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2020_04_24

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!