GPL IMAP lsub literal overflow attempt

SID: 2101902Rev: 100 viewsHistory

Sourceet/open

CreatedSeptember 23, 2010

UpdatedJuly 26, 2019

Classificationmisc-attack

alert tcp $EXTERNAL_NET any -> $HOME_NET 143 (msg:"GPL IMAP lsub literal overflow attempt"; flow:to_server,established; content:"LSUB"; nocase; pcre:"/\sLSUB\s[^\n]*?\s\{/smi"; byte_test:5,>,256,0,string,dec,relative; reference:bugtraq,1110; reference:cve,2000-0284; reference:nessus,10374; classtype:misc-attack; sid:2101902; rev:10; metadata:created_at 2010_09_23, confidence Medium, signature_severity Minor, updated_at 2019_07_26;)

References

bugtraq	1110
cve	2000-0284
nessus	10374

Metadata

created at2010_09_23

confidenceMedium

signature severityMinor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!