ET EXPLOIT QNAP Shellshock script retrieval
Sourceet/open
Fileemerging-exploit.rules
CreatedDecember 10, 2014
UpdatedMarch 14, 2024
Classificationattempted-admin
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT QNAP Shellshock script retrieval"; flow:established,to_client ; file.data; content:"|2f|share|2f|MD0_DATA|2f|optware|2f|.xpl|2f|"; fast_pattern; content:"unset HISTFIE"; reference:url,www.fireeye.com/blog/threat-research/2014/10/the-shellshock-aftershock-for-nas-administrators.html ; reference:url,blogs.akamai.com/2014/09/environment-bashing.html ; reference:cve,2014-6271 ; classtype:attempted-admin; sid:2019905; rev:5; metadata:created_at 2014_12_10, cve CVE_2014_6271, signature_severity Major, updated_at 2024_03_14;)
References
Metadata
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!