alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS e107 EDB-ID 12715"; flow:established,to_server; content:"POST "; nocase; depth:5; uricontent:"/contact.php"; nocase; content:"|0d 0a 0d 0a|send-contactus=1&author_name="; nocase; reference:url,exploit-db.com/exploits/12715/; classtype:web-application-attack; reference:url,doc.emergingthreats.net/2011394; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_e107; sid:2011394; rev:2;)

Added 2010-08-31 16:04:32 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS e107 EDB-ID 12715"; flow:established,to_server; content:"POST "; nocase; depth:5; uricontent:"/contact.php"; nocase; content:"|0d 0a 0d 0a|send-contactus=1&author_name="; nocase; reference:url,exploit-db.com/exploits/12715/; classtype:web-application-attack; reference:url,doc.emergingthreats.net/2011394; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_e107; sid:2011394; rev:2;)

Added 2010-08-31 16:04:32 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS e107 EDB-ID 12715"; flow:established,to_server; content:"POST "; nocase; depth:5; uricontent:"/contact.php"; nocase; content:"|0d 0a 0d 0a|send-contactus=1&author_name="; nocase; reference:url,exploit-db.com/exploits/12715/; classtype:web-application-attack; sid:2011394; rev:1;)

Added 2010-08-26 21:50:46 UTC


Topic revision: r1 - 2010-08-31 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats