ET DOS Cisco 4200 Wireless Lan Controller Long Authorisation Denial of Service Attempt
Sourceet/open
Fileemerging-dos.rules
CreatedJuly 30, 2010
UpdatedJuly 26, 2019
Classificationattempted-dos
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET DOS Cisco 4200 Wireless Lan Controller Long Authorisation Denial of Service Attempt"; flow:to_server,established ; content:"GET"; http_method; nocase; content:"/screens/frameset.html"; fast_pattern; http_uri; nocase; content:"Authorization|3A 20|Basic"; nocase; content:!"|0a|"; distance:2; within:118; isdataat:120,relative ; pcre:"/^Authorization\x3A Basic.{120}/Hmi"; reference:url,www.securityfocus.com/bid/35805 ; reference:url,www.cisco.com/warp/public/707/cisco-amb-20090727-wlc.shtml ; reference:cve,2009-1164 ; classtype:attempted-dos; sid:2010674; rev:7; metadata:created_at 2010_07_30, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)
References
Metadata
created at2010_07_30
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2019_07_26
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!