GPL IMAP authenticate literal overflow attempt

SID: 2102105Rev: 60 viewsHistory

Sourceet/open

CreatedSeptember 23, 2010

UpdatedJuly 26, 2019

Classificationmisc-attack

alert tcp $EXTERNAL_NET any -> $HOME_NET 143 (msg:"GPL IMAP authenticate literal overflow attempt"; flow:established,to_server; content:"AUTHENTICATE"; nocase; pcre:"/\sAUTHENTICATE\s[^\n]*?\{/smi"; byte_test:5,>,256,0,string,dec,relative; reference:cve,1999-0042; reference:nessus,10292; classtype:misc-attack; sid:2102105; rev:6; metadata:created_at 2010_09_23, confidence Medium, signature_severity Minor, updated_at 2019_07_26;)

References

cve	1999-0042
nessus	10292

Metadata

created at2010_09_23

confidenceMedium

signature severityMinor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!