ET EXPLOIT Microsoft Windows Common Control Library Heap Buffer Overflow
Sourceet/open
Fileemerging-exploit.rules
CreatedJanuary 12, 2011
UpdatedApril 15, 2024
Classificationattempted-admin
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Microsoft Windows Common Control Library Heap Buffer Overflow"; flow:established,to_client ; http.content_type; content:"image/svg|2b|xml"; startswith; nocase; file.data; content:"|3c|svg xmlns="; nocase; distance:0; content:"style|3d 22|fill|3a 20 23|ffffff|22|"; fast_pattern; nocase; distance:0; content:"transform"; nocase; distance:0; pcre:"/^=\s*\x22\s*[^\s\x22\x28]{1000}/iR"; reference:bugtraq,43717 ; reference:url,www.microsoft.com/technet/security/bulletin/MS10-081.mspx ; classtype:attempted-admin; sid:2012174; rev:12; metadata:created_at 2011_01_12, confidence High, signature_severity Major, updated_at 2024_04_15;)
References
Metadata
created at2011_01_12
confidenceHigh
signature severityMajor
updated at2024_04_15
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!