ET EXPLOIT Possible JNBridge Java Deserialization Attempt M3

SID: 2033855Rev: 10 views
History
Sourceet/open
CreatedAugust 31, 2021
UpdatedAugust 31, 2021
Classificationattempted-admin
alert tcp any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET EXPLOIT Possible JNBridge Java Deserialization Attempt M3"; flow:established,to_server; content:"JNB"; startswith; pcre:"/^\d[012345]/R"; content:".exec|28|"; fast_pattern; classtype:attempted-admin; sid:2033855; rev:1; metadata:created_at 2021_08_31, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_08_31;)

Metadata

created at2021_08_31
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2021_08_31

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!