ET EXPLOIT Possible Android Stagefright MP4 CVE-2015-1538 - Shell - Suricata Rule 2021757 (et/open)

ET EXPLOIT Possible Android Stagefright MP4 CVE-2015-1538 - Shell

SID: 2021757Rev: 30 viewsHistory

Sourceet/open

CreatedSeptember 10, 2015

UpdatedOctober 8, 2019

Classificationattempted-user

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Possible Android Stagefright MP4 CVE-2015-1538 - Shell"; flow:established,from_server; file_data; content:"|00 00 00 18 66 74 79 70|mp4"; within:13; content:"/system/bin/sh"; fast_pattern; reference:cve,2015-1538; reference:url,blog.zimperium.com/the-latest-on-stagefright-cve-2015-1538-exploit-is-now-available-for-testing-purposes/; classtype:attempted-user; sid:2021757; rev:3; metadata:created_at 2015_09_10, cve CVE_2015_1538, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_10_08;)

References

cve	2015-1538
url	blog.zimperium.com/the-latest-on-stagefright-cve-2015-1538-exploit-is-now-available-for-testing-purposes/

Metadata

created at2015_09_10

cveCVE-2015-1538

confidenceMedium

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2019_10_08

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!