ET ACTIVEX COM Object MS06-042 CLSID 8 Access Attempt
Sourceet/open
Fileemerging-activex.rules
CreatedJuly 30, 2010
UpdatedApril 10, 2024
Classificationattempted-user
alert http $EXTERNAL_NET $HTTP_PORTS -> $HOME_NET any (msg:"ET ACTIVEX COM Object MS06-042 CLSID 8 Access Attempt"; flow:established,to_client ; file.data; content:"2D20D4BB-B47E-4FB7-83BD-E3C2EE250D26"; fast_pattern; nocase; pcre:"/<OBJECT\s+[^>]*classid\s*=\s*[\x22\x27]?\s*clsid\s*\x3a\s*\x7B?\s*2D20D4BB-B47E-4FB7-83BD-E3C2EE250D26/si"; reference:cve,2006-3638 ; reference:url,www.microsoft.com/technet/security/Bulletin/MS06-042.mspx ; classtype:attempted-user; sid:2010299; rev:7; metadata:created_at 2010_07_30, confidence Medium, signature_severity Major, updated_at 2024_04_10;)
Metadata
created at2010_07_30
confidenceMedium
signature severityMajor
updated at2024_04_10
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!