alert icmp $HOME_NET any -> any any (msg:"ET EXPLOIT Possible CVE-2018-4407 - Apple ICMP DoS? PoC?"; itype:12; icode:0; content:"AAAAAAAA"; fast_pattern; metadata: former_category EXPLOIT; reference:url,lgtm.com/blog/apple_xnu_icmp_error_CVE-2018-4407; reference:url,twitter.com/ihackbanme/status/1057811965945376768; classtype:attempted-user; sid:2026567; rev:1; metadata:affected_product Mac_OSX, attack_target Client_Endpoint, deployment Internal, signature_severity Major, created_at 2018_11_01, updated_at 2018_11_01;)

Added 2018-11-01 17:30:39 UTC


Topic revision: r1 - 2018-11-01 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats