ET EXPLOIT CVE-2015-0235 Exim Buffer Overflow Attempt (EHLO)

SID: 2020326Rev: 50 views
History
Sourceet/open
CreatedJanuary 28, 2015
UpdatedJanuary 26, 2023
Classificationattempted-admin
alert tcp $EXTERNAL_NET any -> $HOME_NET [25,465,587] (msg:"ET EXPLOIT CVE-2015-0235 Exim Buffer Overflow Attempt (EHLO)"; flow:to_server,established; content:"EHLO "; nocase; content:!"|0a|"; within:1024; pcre:"/^\s*?\d[\d\x2e]{255}/R"; reference:url,openwall.com/lists/oss-security/2015/01/27/9; classtype:attempted-admin; sid:2020326; rev:5; metadata:created_at 2015_01_28, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2023_01_26;)

References

urlopenwall.com/lists/oss-security/2015/01/27/9

Metadata

created at2015_01_28
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2023_01_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!