GPL RPC snmpXdmi overflow attempt TCP

SID: 2100569Rev: 150 viewsHistory

Sourceet/open

CreatedSeptember 23, 2010

UpdatedJuly 26, 2019

Classificationattempted-admin

alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL RPC snmpXdmi overflow attempt TCP"; flow:to_server,established; content:"|00 01 87 99|"; depth:4; offset:16; content:"|00 00 01 01|"; within:4; distance:4; byte_jump:4,4,relative,align; byte_jump:4,4,relative,align; byte_test:4,>,1024,20,relative; content:"|00 00 00 00|"; depth:4; offset:8; reference:bugtraq,2417; reference:cve,2001-0236; reference:url,www.cert.org/advisories/CA-2001-05.html; classtype:attempted-admin; sid:2100569; rev:15; metadata:created_at 2010_09_23, cve CVE_2001_0236, confidence Medium, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)

References

bugtraq	2417
cve	2001-0236
url	www.cert.org/advisories/CA-2001-05.html

Metadata

created at2010_09_23

cveCVE-2001-0236

confidenceMedium

signature severityInformational

tagDescription_Generated_By_Proofpoint_Nexus

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!