alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dicoogle PACS 2.5.0 - Directory Traversal"; flow:established,to_server; http.uri; content:"/exportFile?UID="; fast_pattern; content:"|2e 2e 5c|"; reference:url,exploit-db.com/exploits/45007/; classtype:attempted-user; sid:2025825; rev:4; metadata:created_at 2018_07_11, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_11_26, mitre_tactic_id TA0007, mitre_tactic_name Discovery, mitre_technique_id T1083, mitre_technique_name File_And_Directory_Discovery; target:dest_ip;)