ET EXPLOIT Possible CVE-2018-4407 - Apple ICMP DoS PoC - Suricata Rule 2026567 (et/open)

ET EXPLOIT Possible CVE-2018-4407 - Apple ICMP DoS PoC

SID: 2026567Rev: 10 viewsHistory

Sourceet/open

CreatedNovember 1, 2018

UpdatedJuly 26, 2019

Classificationattempted-user

alert icmp $HOME_NET any -> any any (msg:"ET EXPLOIT Possible CVE-2018-4407 - Apple ICMP DoS PoC"; itype:12; icode:0; content:"AAAAAAAA"; fast_pattern; reference:url,lgtm.com/blog/apple_xnu_icmp_error_CVE-2018-4407; reference:url,twitter.com/ihackbanme/status/1057811965945376768; classtype:attempted-user; sid:2026567; rev:1; metadata:affected_product Mac_OSX, attack_target Client_Endpoint, created_at 2018_11_01, cve CVE_2018_4407, deployment Internal, confidence Medium, signature_severity Major, updated_at 2019_07_26;)

References

url	lgtm.com/blog/apple_xnu_icmp_error_CVE-2018-4407
url	twitter.com/ihackbanme/status/1057811965945376768

Metadata

affected productMac_OSX

attack targetClient_Endpoint

created at2018_11_01

cveCVE-2018-4407

deploymentInternal

confidenceMedium

signature severityMajor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!