alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; content:"/News/page.asp?"; nocase; http_uri; content:"NewsID="; nocase; http_uri; content:"DELETE"; nocase; http_uri; pcre:"/DELETE.+FROM/Ui"; reference:cve,CVE-2007-1566; reference:url,www.exploit-db.com/exploits/3520/; reference:url,doc.emergingthreats.net/2004161; classtype:web-application-attack; sid:2004161; rev:7;)

Added 2011-10-12 19:15:01 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; content:"/News/page.asp?"; nocase; http_uri; content:"NewsID="; nocase; http_uri; content:"DELETE"; nocase; http_uri; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.exploit-db.com/exploits/3520/; reference:url,doc.emergingthreats.net/2004161; sid:2004161; rev:7;)

Added 2011-09-14 22:28:12 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; content:"/News/page.asp?"; nocase; http_uri; content:"NewsID="; nocase; http_uri; content:"DELETE"; nocase; http_uri; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.exploit-db.com/exploits/3520/; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:7;)

Added 2011-03-04 15:37:32 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2011-02-04 17:23:04 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2009-10-06 14:39:16 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2009-10-06 14:39:16 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2009-10-06 14:19:48 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2009-10-06 14:19:48 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2009-10-06 14:16:27 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_NetVIOS; sid:2004161; rev:5;)

Added 2009-10-06 14:16:27 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_NetVIOS; sid:2004161; rev:4;)

Added 2009-02-23 21:15:27 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_NetVIOS; sid:2004161; rev:4;)

Added 2009-02-23 21:15:27 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_NetVIOS; sid:2004161; rev:4;)

Added 2009-02-23 21:13:35 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; reference:url,doc.emergingthreats.net/2004161; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_NetVIOS; sid:2004161; rev:4;)

Added 2009-02-23 21:13:35 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:3;)

Added 2008-02-01 10:46:23 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:3;)

Added 2008-02-01 10:46:23 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-29 09:47:11 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-29 05:16:47 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-29 04:03:49 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-29 03:48:45 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 12:55:12 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 10:32:37 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 05:35:04 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 05:09:12 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 04:38:50 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 03:48:31 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-27 02:39:25 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-26 23:05:39 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-25 14:27:34 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-25 01:34:49 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-25 00:52:08 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-24 23:48:05 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-24 16:04:07 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-24 14:39:49 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-24 03:16:50 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-24 02:57:10 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-23 08:46:26 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-22 23:04:48 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-22 22:47:20 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-22 12:04:26 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-21 22:06:00 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-21 00:30:10 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-20 10:04:20 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-20 04:17:12 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-19 22:43:22 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-19 20:53:01 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-19 01:37:06 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-19 01:23:19 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-18 11:47:01 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-18 11:40:16 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-18 15:03:49 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-18 02:31:29 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-16 04:19:01 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 23:01:43 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 07:02:29 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 05:07:03 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 04:40:01 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 03:32:01 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 03:19:56 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 03:14:30 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 02:47:19 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 01:31:33 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-15 01:16:15 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 23:16:16 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 23:01:59 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 13:46:18 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 03:02:04 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 02:56:29 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 02:16:28 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 02:02:27 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 01:38:18 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 01:02:07 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-14 00:03:10 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-13 10:34:53 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-13 04:20:13 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; uricontent:"DELETE"; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:2;)

Added 2007-08-13 04:13:35 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB NetVIOS? Portal SQL Injection Attempt -- page.asp NewsID? DELETE"; flow:established,to_server; uricontent:"/News/page.asp?"; nocase; uricontent:"NewsID="; nocase; pcre:"/DELETE.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-1566; reference:url,www.milw0rm.com/exploits/3520; sid:2004161; rev:1;)

Added 2007-06-04 01:20:42 UTC


Topic revision: r1 - 2011-10-12 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats