##alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET DELETED Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; reference:url,www.milw0rm.com; reference:url,doc.emergingthreats.net/2009586; classtype:misc-activity; sid:2009586; rev:3;)

Added 2011-10-12 19:27:47 UTC


##alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET DELETED Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; classtype:misc-activity; reference:url,www.milw0rm.com; reference:url,doc.emergingthreats.net/2009586; sid:2009586; rev:3;)

Added 2011-09-14 22:41:07 UTC


##alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET DELETED Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; classtype:misc-activity; reference:url,www.milw0rm.com; reference:url,doc.emergingthreats.net/2009586; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Milw0rm.com; sid:2009586; rev:3;)

Added 2011-02-04 17:28:56 UTC


alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET POLICY Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; classtype:misc-activity; reference:url,www.milw0rm.com; reference:url,doc.emergingthreats.net/2009586; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Milw0rm.com; sid:2009586; rev:3;)

Added 2009-07-16 11:30:35 UTC


alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET POLICY Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; classtype:misc-activity; reference:url,www.milw0rm.com; reference:url,doc.emergingthreats.net/2009586; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/POLICY/POLICY_Milw0rm.com; sid:2009586; rev:3;)

Added 2009-07-16 11:30:35 UTC


alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET POLICY Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; classtype:misc-activity; reference:url,www.milw0rm.com; sid:2009586; rev:2;)

Added 2009-07-16 07:20:08 UTC


alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET POLICY Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; classtype:misc-activity; reference:url,www.milw0rm.com; sid:2009586; rev:2;)

Added 2009-07-16 07:20:08 UTC


alert tcp $HOME_NET any -> 76.74.9.18 $HTTP_PORTS (msg:"ET POLICY Milw0rm Exploit Launch Attempt"; flow:to_server,established; content:"GET "; depth:4; uricontent:"/exploit.php?id="; nocase; content:"|0d 0a|Host\: "; content:"milw0rm.com|0d 0a|"; distance:0; within:20; classtype:misc-activity; reference:url,www.milw0rm.com; sid:2009586; rev:1;)

Added 2009-07-15 09:00:37 UTC


Topic revision: r1 - 2011-10-12 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats