ET EXPLOIT HP Smart Storage Administrator Remote Command Injection

7.0.35.0SID: 2024063Rev: 3Enabled1 views
Sourceet/open
Fileemerging-exploit.rules
CreatedMarch 15, 2017
UpdatedMarch 7, 2024
Classificationattempted-user
alert tcp $EXTERNAL_NET any -> $HOME_NET 2381 (msg:"ET EXPLOIT HP Smart Storage Administrator Remote Command Injection"; flow:established,to_server; content:"echo -n|20|"; pcre:"/^\s*(?:f0VMR|9FTE|\/RUxG)/R"; reference:cve,2016-8523; classtype:attempted-user; sid:2024063; rev:3; metadata:affected_product HP_Smart_Storage_Administrator, attack_target Server, created_at 2017_03_15, cve CVE_2016_8523, deployment Datacenter, performance_impact Low, confidence High, signature_severity Critical, updated_at 2024_03_07, mitre_tactic_id TA0008, mitre_tactic_name Lateral_Movement, mitre_technique_id T1210, mitre_technique_name Exploitation_Of_Remote_Services;)

References

Metadata

affected productHP_Smart_Storage_Administrator
attack targetServer
created at2017_03_15
deploymentDatacenter
performance impactLow
confidenceHigh
signature severityCritical
updated at2024_03_07
mitre tactic idTA0008
mitre tactic nameLateral_Movement
mitre technique idT1210
mitre technique nameExploitation_Of_Remote_Services

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!