ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)

SID: 2030830Rev: 10 viewsHistory

Sourceet/open

CreatedSeptember 3, 2020

UpdatedSeptember 3, 2020

Classificationattempted-admin

alert http any any -> [$HTTP_SERVERS,$HOME_NET] any (msg:"ET EXPLOIT Apache2 Memory Corruption Inbound (CVE-2020-9490)"; flow:established,to_server; http.method; content:"GET"; http.header; content:"Cache-Digest|3a 20|EA"; fast_pattern; pcre:"/^(?:8=|9BQQ==)\r?\n?/R"; reference:url,bugs.chromium.org/p/project-zero/issues/detail?id=2030&q=apache&can=1; reference:cve,2020-9490; classtype:attempted-admin; sid:2030830; rev:1; metadata:created_at 2020_09_03, cve CVE_2020_9490, deployment Perimeter, deployment SSLDecrypt, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_09_03;)

References

url	bugs.chromium.org/p/project-zero/issues/detail?id=2030&q=apache&can=1
cve	2020-9490

Metadata

created at2020_09_03

cveCVE-2020-9490

deploymentSSLDecrypt

confidenceMedium

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2020_09_03

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!