ATTACK [PTsecurity] Nagios Core < 4.2.2 Curl Command Injection (CVE-2016-9565) Remote Script Execution

SID: 10000779Rev: 130 views
History
Sourceptrules/open
CreatedJuly 24, 2025
UpdatedJuly 24, 2025
Classificationattempted-admin
alert http any any -> any any (msg:"ATTACK [PTsecurity] Nagios Core < 4.2.2 Curl Command Injection (CVE-2016-9565) Remote Script Execution"; flow:established, from_server; content:"302"; http_stat_code; content:"--trace-ascii"; http_header; content:" -F"; http_header; pcre:"/Location\:(?:.*?\s+-F\S+\s+){2}/Hi"; flowbits:isset, CVE.2016-9565.RSSRequest; reference:url, legalhackers.com/advisories/Nagios-Exploit-Command-Injection-CVE-2016-9565-2008-4796.html; reference:cve, 2016-9565; reference:url, rules.ptsecurity.com; classtype:attempted-admin; sid:10000779; rev:1;)

References

urllegalhackers.com/advisories/Nagios-Exploit-Command-Injection-CVE-2016-9565-2008-4796.html
cve2016-9565
urlrules.ptsecurity.com

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!