ET WEB_SPECIFIC_APPS Possible JBoss/JMX EJBInvokerServlet RCE Using Marshalled Object

SID: 2017574Rev: 60 views
History
Sourceet/open
CreatedOctober 10, 2013
UpdatedNovember 5, 2020
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible JBoss/JMX EJBInvokerServlet RCE Using Marshalled Object"; flow:established,to_server; http.method; content:"POST"; http.uri; content:"/invoker/EJBInvokerServlet/"; nocase; fast_pattern; http.content_type; content:"invocation.MarshalledInvocation"; nocase; reference:url,www.exploit-db.com/exploits/28713/; classtype:web-application-attack; sid:2017574; rev:6; metadata:created_at 2013_10_10, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_11_05;)

References

urlwww.exploit-db.com/exploits/28713/

Metadata

created at2013_10_10
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2020_11_05

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!