ET EXPLOIT CVE-2015-0235 Exim Buffer Overflow Attempt (EHLO)

7.0.35.0SID: 2020326Rev: 6Disabled4 views
Sourceet/open
Fileemerging-exploit.rules
CreatedJanuary 28, 2015
UpdatedMarch 6, 2024
Classificationattempted-admin
alert tcp $EXTERNAL_NET any -> $HOME_NET [25,465,587] (msg:"ET EXPLOIT CVE-2015-0235 Exim Buffer Overflow Attempt (EHLO)"; flow:established,to_server; content:"EHLO "; nocase; content:!"|0a|"; within:1024; pcre:"/^\s*?\d[\d\x2e]{255}/R"; reference:url,openwall.com/lists/oss-security/2015/01/27/9; classtype:attempted-admin; sid:2020326; rev:6; metadata:created_at 2015_01_28, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_06;)

Metadata

created at2015_01_28
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_06

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!