ET WEB_SERVER Internal WebServer Compromised By Lizamoon Mass SQL-Injection Attacks
Sourceet/open
Fileemerging-web_server.rules
CreatedApril 1, 2011
UpdatedApril 9, 2024
Classificationweb-application-attack
alert http $HTTP_SERVERS any -> $EXTERNAL_NET any (msg:"ET WEB_SERVER Internal WebServer Compromised By Lizamoon Mass SQL-Injection Attacks"; flow:established,to_client ; file.data; content:"</title><script src=http|3a|//"; fast_pattern; nocase; content:"/ur.php></script>"; within:100; reference:url,malwaresurvival.net/tag/lizamoon-com/ ; classtype:web-application-attack; sid:2012614; rev:7; metadata:created_at 2011_04_01, signature_severity Unknown, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_04_09;)
References
Metadata
created at2011_04_01
signature severityUnknown
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_04_09
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!