ET EXPLOIT HP Smart Storage Administrator Remote Command Injection

SID: 2024063Rev: 20 viewsHistory

Sourceet/open

CreatedMarch 15, 2017

UpdatedJuly 26, 2019

Classificationattempted-user

alert tcp $EXTERNAL_NET any -> $HOME_NET 2381 (msg:"ET EXPLOIT HP Smart Storage Administrator Remote Command Injection"; flow:to_server,established; content:"echo -n|20|"; pcre:"/^\s*(?:f0VMR|9FTE|\/RUxG)/R"; reference:cve,2016-8523; classtype:attempted-user; sid:2024063; rev:2; metadata:affected_product HP_Smart_Storage_Administrator, attack_target Server, created_at 2017_03_15, cve CVE_2016_8523, deployment Datacenter, performance_impact Low, confidence High, signature_severity Critical, updated_at 2019_07_26, mitre_tactic_id TA0008, mitre_tactic_name Lateral_Movement, mitre_technique_id T1210, mitre_technique_name Exploitation_Of_Remote_Services;)

References

cve

2016-8523

Metadata

affected productHP_Smart_Storage_Administrator

attack targetServer

created at2017_03_15

cveCVE-2016-8523

deploymentDatacenter

performance impactLow

confidenceHigh

signature severityCritical

updated at2019_07_26

mitre tactic idTA0008

mitre tactic nameLateral_Movement

mitre technique idT1210

mitre technique nameExploitation_Of_Remote_Services

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!