ET WEB_CLIENT MP4 Embedded in PDF File - Potential Flash Exploit (CVE-2012-0754)
Sourceet/open
Fileemerging-web_client.rules
CreatedJune 7, 2012
UpdatedJune 10, 2022
Classificationbad-unknown
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT MP4 Embedded in PDF File - Potential Flash Exploit (CVE-2012-0754)"; flow:established,to_client ; content:"obj"; content:"<<"; within:4; content:"stream"; distance:0; content:"|00 00 00 18 66 74 79 70|mp4"; within:13; reference:cve,2012-0754 ; reference:url,blog.9bplus.com/observing-the-enemy-cve-2012-0754-pdf-interac ; classtype:bad-unknown; sid:2014865; rev:4; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2012_06_07, deployment Perimeter, confidence Medium, signature_severity Major, tag Web_Client_Attacks, tag CISA_KEV, updated_at 2022_06_10;)
Metadata
affected productWeb_Browser_Plugins
attack targetClient_Endpoint
created at2012_06_07
deploymentPerimeter
confidenceMedium
signature severityMajor
tagCISA_KEV
updated at2022_06_10
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!