alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; classtype:web-application-attack; sid:2010009; rev:4;)

Added 2011-10-12 19:28:44 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; sid:2010009; rev:4;)

Added 2011-09-14 22:42:01 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_Webmin; sid:2010009; rev:4;)

Added 2011-02-04 17:29:26 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_Webmin; sid:2010009; rev:4;)

Added 2009-10-06 14:20:24 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_Webmin; sid:2010009; rev:4;)

Added 2009-10-06 14:20:24 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_Webmin; sid:2010009; rev:4;)

Added 2009-10-06 14:17:01 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_Webmin; sid:2010009; rev:4;)

Added 2009-10-06 14:17:01 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webmin; sid:2010009; rev:2;)

Added 2009-09-30 22:30:39 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; reference:url,doc.emergingthreats.net/2010009; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Webmin; sid:2010009; rev:2;)

Added 2009-09-30 22:30:39 UTC


alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB Webmin Pre-1.290 Compromise Attempt"; flow:established,to_server; content:"POST "; depth:5; uricontent:"/unathenticated/"; content:"/unauthenticated//..%01/..%01/..%01/"; classtype:web-application-attack; reference:url,bliki.rimuhosting.com/comments/knowledgebase/linux/miscapplications/webmin; sid:2010009; rev:1;)

Added 2009-09-30 13:00:37 UTC


Topic revision: r1 - 2011-10-12 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats