#alert tcp $EXTERNAL_NET $HTTP_PORTS -> $HOME_NET any (msg:"BLEEDING-EDGE CURRENT EVENTS Vulnerable MS FlashPix? ActiveX? Control in Use"; flow:established,from_server; content:"CLSID"; nocase; content:"{201EA564-A6F6-11D1-811D-00C04FB6BD36}"; distance:0; nocase; classtype:web-application-activity; reference:url,secunia.com/advisories/26426/; sid:2007342; rev:3;)

Added 2008-01-09 20:38:27 UTC


alert tcp $EXTERNAL_NET $HTTP_PORTS -> $HOME_NET any (msg:"BLEEDING-EDGE CURRENT_EVENTS Vulnerable MS FlashPix? ActiveX? Control in Use"; flow:established,from_server; content:"CLSID"; nocase; content:"{201EA564-A6F6-11D1-811D-00C04FB6BD36}"; distance:0; nocase; classtype:web-application-activity; reference:url,secunia.com/advisories/26426/; sid:2007342; rev:2;)

Added 2007-08-29 03:47:57 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB HIOX Star Rating System Script (HSRS) SQL Injection Attempt -- addrating.php ipadd SELECT"; flow:established,to_server; uricontent:"/addrating.php?"; nocase; uricontent:"ipadd="; nocase; uricontent:"SELECT"; nocase; pcre:"/.+SELECT.+FROM/Ui"; classtype:web-application-attack; reference:cve,CVE-2006-6155; reference:url,www.frsirt.com/english/advisories/2006/4689; sid:2007342; rev:1;)

Added 2007-08-15 01:31:30 UTC


Topic revision: r2 - 2008-01-21 - MattJonkman
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats