ET DELETED Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) (Content-Disposition) M2

SID: 2024097Rev: 20 views
History
Sourceet/open
CreatedMarch 20, 2017
UpdatedJuly 26, 2019
Classificationweb-application-attack
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET DELETED Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) (Content-Disposition) M2"; flow:to_server,established; content:"Content-Disposition|3a 20 25 7b 28|"; nocase; content:"{"; content:"}"; classtype:web-application-attack; sid:2024097; rev:2; metadata:affected_product Apache_Struts2, attack_target Web_Server, created_at 2017_03_20, deployment Datacenter, signature_severity Major, tag CISA_KEV, updated_at 2019_07_26;)

Metadata

affected productApache_Struts2
attack targetWeb_Server
created at2017_03_20
deploymentDatacenter
signature severityMajor
tagCISA_KEV
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!