alert http any any -> $HOME_NET any (msg:"ET EXPLOIT Netgear ReadyNAS? Surveillance Unauthenticated Remote Command Execution"; flow:to_server,established; content:"/upgrade_handle.php?cmd=writeuploaddir&uploaddir=|25|27"; depth:52; http_uri; metadata: former_category EXPLOIT; reference:url,blogs.securiteam.com/index.php/archives/3409; reference:cve,CVE-2017-18377; classtype:attempted-recon; sid:2024914; rev:2; metadata:attack_target IoT?, deployment Perimeter, signature_severity Major, created_at 2017_10_25, updated_at 2017_10_25;)

Added 2019-06-18 18:40:50 UTC


alert http any any -> $HOME_NET any (msg:"ET EXPLOIT Netgear ReadyNAS? Surveillance Unauthenticated Remote Command Execution"; flow:to_server,established; content:"/upgrade_handle.php?cmd=writeuploaddir&uploaddir=|25|27"; depth:52; http_uri; metadata: former_category EXPLOIT; reference:url,blogs.securiteam.com/index.php/archives/3409; classtype:attempted-recon; sid:2024914; rev:1; metadata:attack_target IoT?, deployment Perimeter, signature_severity Major, created_at 2017_10_25, updated_at 2017_10_25;)

Added 2018-09-13 19:54:16 UTC


Added 2018-09-13 18:01:53 UTC


alert http any any -> $HOME_NET any (msg:"ET EXPLOIT Netgear ReadyNAS? Surveillance Unauthenticated Remote Command Execution"; flow:to_server,established; content:"/upgrade_handle.php?cmd=writeuploaddir&uploaddir=|25|27"; depth:52; http_uri; metadata: former_category EXPLOIT; reference:url,blogs.securiteam.com/index.php/archives/3409; classtype:attempted-recon; sid:2024914; rev:1; metadata:attack_target IoT?, deployment Perimeter, signature_severity Major, created_at 2017_10_25, updated_at 2017_10_25;)

Added 2017-10-25 16:14:21 UTC


Topic revision: r1 - 2019-06-18 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats