ET WEB_SERVER Possible OpenX Backdoor Backdoor Access POST to flowplayer

SID: 2017280Rev: 40 views
History
Sourceet/open
CreatedAugust 6, 2013
UpdatedApril 24, 2020
Classificationtrojan-activity
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Possible OpenX Backdoor Backdoor Access POST to flowplayer"; flow:established,to_server; http.method; content:"POST"; nocase; http.uri; content:"/flowplayer-3.1.1.min.js"; nocase; reference:url,blog.sucuri.net/2013/08/openx-org-compromised-and-downloads-injected-with-a-backdoor.html; classtype:trojan-activity; sid:2017280; rev:4; metadata:created_at 2013_08_06, confidence Medium, signature_severity Major, updated_at 2020_04_24;)

References

urlblog.sucuri.net/2013/08/openx-org-compromised-and-downloads-injected-with-a-backdoor.html

Metadata

created at2013_08_06
confidenceMedium
signature severityMajor
updated at2020_04_24

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!