ET DELETED SSL MiTM Vulnerable or EOL iOS 4.x device
Sourceet/open
Fileemerging-deleted.rules
CreatedAugust 12, 2011
UpdatedJuly 26, 2019
Classificationnot-suspicious
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET DELETED SSL MiTM Vulnerable or EOL iOS 4.x device"; flow:established,to_server ; content:"Mozilla/5.0 (iP"; http_header; content:" OS 4_"; http_header; distance:0; pcre:"/OS 4_[0-3]_[1-4] like/H"; threshold:type limit, count 1, seconds 600, track by_src ; reference:url,support.apple.com/kb/HT1222 ; reference:url,support.apple.com/kb/HT4824 ; reference:url,en.wikipedia.org/wiki/IOS_version_history ; reference:url,github.com/jan0/isslfix ; reference:cve,CVE-2011-0228 ; classtype:not-suspicious; sid:2013407; rev:6; metadata:created_at 2011_08_12, signature_severity Unknown, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)
References
Metadata
created at2011_08_12
signature severityUnknown
tagDescription_Generated_By_Proofpoint_Nexus
updated at2019_07_26
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!