alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS PHP Traverser mp3_id.php Remote File Include Attempt"; flow:established,to_server; content:"GET"; depth:4; uricontent:"/mp3_id.php?GLOBALS[BASE]="; classtype:web-application-attack; reference:bugtraq,41899; reference:url,doc.emergingthreats.net/2011284; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SERVER/WEB_Traverser; sid:2011284; rev:3;)

Added 2010-08-02 15:15:59 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS PHP Traverser mp3_id.php Remote File Include Attempt"; flow:established,to_server; content:"GET"; depth:4; uricontent:"/mp3_id.php?GLOBALS[BASE]="; classtype:web-application-attack; reference:bugtraq,41899; reference:url,doc.emergingthreats.net/2011284; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SERVER/WEB_Traverser; sid:2011284; rev:3;)

Added 2010-08-02 15:15:59 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS PHP Traverser mp3_id.php Remote File Include Attempt"; flow:established,to_server; content:"GET"; depth:4; uricontent:"/mp3_id.php?GLOBALS[BASE]="; classtype:web-application-attack; reference:bugtraq,41899; reference:url,doc.emergingthreats.net/2011284; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SERVER/WEB_Traverser; sid:2011284; rev:3;)

Added 2010-08-02 15:14:57 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS PHP Traverser mp3_id.php Remote File Include Attempt"; flow:established,to_server; content:"GET"; depth:4; uricontent:"/mp3_id.php?GLOBALS[BASE]="; classtype:web-application-attack; reference:bugtraq,41899; reference:url,doc.emergingthreats.net/2011284; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SERVER/WEB_Traverser; sid:2011284; rev:3;)

Added 2010-08-02 15:14:57 UTC


alert tcp $EXTERNAL_NET $HTTP_PORTS -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SERVER PHP Traverser mp3_id.php Remote File Include Attempt"; flow:established,to_server; content:"GET"; depth:4; uricontent:"/mp3_id.php?GLOBALS[BASE]="; classtype:web-application-attack; reference:bugtraq,41899; reference:url,doc.emergingthreats.net/2011284; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SERVER/WEB_Traverser; sid:2011284; rev:2;)

Added 2010-08-01 20:38:14 UTC


Topic revision: r1 - 2010-08-02 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats