ET WEB_SPECIFIC_APPS DNN DNNPersonalization Cookie RCE Attempt (CVE-2017-9822)

SID: 2025545Rev: 40 viewsHistory

Sourceet/open

CreatedApril 27, 2018

UpdatedNovember 4, 2020

Classificationattempted-admin

alert http any any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS DNN DNNPersonalization Cookie RCE Attempt (CVE-2017-9822)"; flow:established,to_server; http.cookie; content:"DNNPersonalization="; fast_pattern; content:"ObjectStateFormatter"; content:"ObjectDataProvider"; reference:cve,2017-9822; reference:url,f5.com/labs/articles/threat-intelligence/cyber-security/zealot-new-apache-struts-campaign-uses-eternalblue-and-eternalsynergy-to-mine-monero-on-internal-networks?sf176487178; classtype:attempted-admin; sid:2025545; rev:4; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2018_04_27, cve CVE_2017_9822, deployment Datacenter, signature_severity Minor, tag CISA_KEV, updated_at 2020_11_04;)

References

cve	2017-9822
url	f5.com/labs/articles/threat-intelligence/cyber-security/zealot-new-apache-struts-campaign-uses-eternalblue-and-eternalsynergy-to-mine-monero-on-internal-networks?sf176487178

Metadata

affected productWeb_Server_Applications

attack targetWeb_Server

created at2018_04_27

cveCVE-2017-9822

deploymentDatacenter

signature severityMinor

tagCISA_KEV

updated at2020_11_04

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!