ET EXPLOIT Quanta LTE Router RDE Exploit Attempt 2 (traceroute)

SID: 2022701Rev: 40 viewsHistory

Sourceet/open

CreatedApril 5, 2016

UpdatedJune 30, 2020

Classificationattempted-admin

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Quanta LTE Router RDE Exploit Attempt 2 (traceroute)"; flow:to_server,established; http.method; content:"POST"; http.uri; content:"/webpost.cgi"; http.request_body; content:"|7b 22 43 66 67 54 79 70 65 22 3a 22 74 72 61 63 65 72 74 22 2c 22 63 6d 64 22 3a 22 74 72 61 63 65 72 74 22 2c 22 75 72 6c 22 3a 22|"; fast_pattern; pcre:"/^[^\x22]*[\x24\x60]+/Ri"; reference:url,pierrekim.github.io/blog/2016-04-04-quanta-lte-routers-vulnerabilities.html; classtype:attempted-admin; sid:2022701; rev:4; metadata:created_at 2016_04_05, confidence High, signature_severity Major, updated_at 2020_06_30;)

References

url	pierrekim.github.io/blog/2016-04-04-quanta-lte-routers-vulnerabilities.html

Metadata

created at2016_04_05

confidenceHigh

signature severityMajor

updated at2020_06_30

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!