ET EXPLOIT Pulse Secure SSL VPN - Arbitrary File Read (CVE-2019-11510) - Suricata Rule 2027904 (et/open)

ET EXPLOIT Pulse Secure SSL VPN - Arbitrary File Read (CVE-2019-11510)

SID: 2027904Rev: 32 viewsHistory

Sourceet/open

CreatedAugust 22, 2019

UpdatedSeptember 1, 2020

Classificationtrojan-activity

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Pulse Secure SSL VPN - Arbitrary File Read (CVE-2019-11510)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/dana-na/../dana/html5acc/guacamole/../"; depth:39; fast_pattern; isdataat:10,relative; reference:url,packetstormsecurity.com/files/154176/Pulse-Secure-SSL-VPN-8.1R15.1-8.2-8.3-9.0-Arbitrary-File-Disclosure.html; reference:cve,CVE-2019-11510; classtype:trojan-activity; sid:2027904; rev:3; metadata:affected_product Pulse_Secure, created_at 2019_08_22, signature_severity Major, tag CISA_KEV, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_09_01;)

References

url	packetstormsecurity.com/files/154176/Pulse-Secure-SSL-VPN-8.1R15.1-8.2-8.3-9.0-Arbitrary-File-Disclosure.html
cve	CVE-2019-11510

Metadata

affected productPulse_Secure

created at2019_08_22

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2020_09_01

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!