ATTACK [PTsecurity] GNU Wget < 1.18 Arbitrary File Upload / Potential Remote Code Execution

SID: 10000063Rev: 20 views

Sourceptresearch/attackdetection

CreatedDecember 13, 2021

UpdatedDecember 13, 2021

Classificationbad-unknown

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ATTACK [PTsecurity] GNU Wget < 1.18 Arbitrary File Upload / Potential Remote Code Execution"; flowbits:isset, 10000062; content:"30"; http_stat_code; depth:2; content:"Location: ftp://"; nocase; http_header; reference:cve, 2016-4971; classtype:bad-unknown; reference:url, legalhackers.com/advisories/Wget-Arbitrary-File-Upload-Vulnerability-Exploit.txt; reference:url, github.com/ptresearch/AttackDetection; sid:10000063; rev:2;)

References

cve	2016-4971
url	legalhackers.com/advisories/Wget-Arbitrary-File-Upload-Vulnerability-Exploit.txt
url	github.com/ptresearch/AttackDetection

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!