alert http $EXTERNAL_NET any -> $HOME_NET 4848 (msg:"ET WEB_SPECIFIC_APPS Possible Oracle GlassFish? Server Administration Console Authentication Bypass Attempt"; flow:established,to_server; content:"TRACE"; http_method; content:".jsf"; nocase; http_uri; reference:url,www.coresecurity.com/content/oracle-glassfish-server-administration-console-authentication-bypass; reference:bid,47818; reference:cve,2011-1511; classtype:attempted-recon; sid:2012977; rev:3; metadata:created_at 2011_06_08, updated_at 2011_06_08;)

Added 2017-08-07 21:06:12 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET 4848 (msg:"ET WEB_SPECIFIC_APPS Possible Oracle GlassFish? Server Administration Console Authentication Bypass Attempt"; flow:established,to_server; content:"TRACE "; nocase; depth:6; content:".jsf"; nocase; distance:0; reference:url,www.coresecurity.com/content/oracle-glassfish-server-administration-console-authentication-bypass; reference:bid,47818; reference:cve,2011-1511; classtype:attempted-recon; sid:2012977; rev:1;)

Added 2011-10-12 19:35:40 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET 4848 (msg:"ET WEB_SPECIFIC_APPS Possible Oracle GlassFish? Server Administration Console Authentication Bypass Attempt"; flow:established,to_server; content:"TRACE "; nocase; depth:6; content:".jsf"; nocase; distance:0; classtype:attempted-recon; reference:url,www.coresecurity.com/content/oracle-glassfish-server-administration-console-authentication-bypass; reference:bid,47818; reference:cve,2011-1511; sid:2012977; rev:1;)

Added 2011-06-08 23:52:21 UTC


Topic revision: r1 - 2017-08-08 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats