alert tcp $EXTERNAL_NET any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET "; depth:4; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; reference:url,doc.emergingthreats.net/bin/view/Main/2001751; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Shoutcast; sid:2001751; rev:8;)
Added 2009-03-13 20:47:17 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET "; depth:4; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; reference:url,doc.emergingthreats.net/bin/view/Main/2001751; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Shoutcast; sid:2001751; rev:8;)
Added 2009-03-13 20:47:17 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; reference:url,doc.emergingthreats.net/bin/view/Main/2001751; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Shoutcast; sid:2001751; rev:7;)
Added 2009-02-07 22:00:26 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; reference:url,doc.emergingthreats.net/bin/view/Main/2001751; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/EXPLOIT/EXPLOIT_Shoutcast; sid:2001751; rev:7;)
Added 2009-02-07 22:00:26 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:6;)
Added 2008-05-18 19:52:13 UTC
alert tcp $EXTERNAL_NET any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:6;)
Added 2008-05-18 19:52:13 UTC
alert tcp any any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:5;)
Added 2008-01-25 10:56:38 UTC
alert tcp any any -> $HOME_NET 8000:8030 (msg:"ET EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:5;)
Added 2008-01-25 10:56:38 UTC
alert tcp any any -> $HOME_NET 8000:8030 (msg:"BLEEDING-EDGE EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:4;)
Added 2007-10-27 10:16:07 UTC
alert tcp any any -> $HOME_NET 8000:8030 (msg:"BLEEDING-EDGE EXPLOIT Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:4;)
Added 2007-10-27 10:16:07 UTC
alert tcp any any -> $HOME_NET 8000:8030 (msg:"BLEEDING-EDGE Nullsoft Shoutcast Server Format String Attack"; flow:established,to_server; content:"GET"; depth:3; nocase; pcre:"/\/content\/.*?%#?\d*[a-z\.].*?\.mp3/Ri"; reference:cve,2004-1373; reference:bugtraq,12096; classtype:web-application-attack; sid:2001751; rev:3;)