ATTACK [PTsecurity] Cisco Smart Install 15.2(5)E RCE (CVE-2018-0171)

SID: 10002774Rev: 10 views

Sourceptresearch/attackdetection

CreatedDecember 13, 2021

UpdatedDecember 13, 2021

Classificationattempted-admin

alert tcp any any -> $HOME_NET 4786 (msg:"ATTACK [PTsecurity] Cisco Smart Install 15.2(5)E RCE (CVE-2018-0171)"; flow:established, to_server, no_stream; content:"|00 00 00 01 00 00 00 07|"; offset:4; depth:8; content:"|00 00 00 01|"; distance:4; within:4; isdataat:210, relative; reference:cve, 2018-0171; reference:url, embedi.com/blog/cisco-smart-install-remote-code-execution; classtype:attempted-admin; reference:url, github.com/ptresearch/AttackDetection; sid:10002774; rev:1;)

References

cve	2018-0171
url	embedi.com/blog/cisco-smart-install-remote-code-execution
url	github.com/ptresearch/AttackDetection

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!